e54442af36
Fix #4089 - undefined method `downcase' for nil:NilClass
2014-11-07 02:45:22 -06:00
71a96f256b
Land #4149 , readline adjustments
...
* Windows guard, DRYing
2014-11-07 00:09:48 -06:00
7b25e3be75
Land #4139 , Visual Mining NetCharts
...
landed after some touch up
2014-11-06 22:52:41 -06:00
7510fb40aa
touch up visual_mining_netcharts_upload
2014-11-06 22:50:20 -06:00
709ff1bbdb
touch up lib/rex/mime/message.rb
2014-11-06 22:48:34 -06:00
f494a9f3da
Don't depend on 'rb-readline' on Windows
...
MSP-11585
`rb-readline` gem doesn't work with Ruby Installer for 1.9.3 because of
`NoMethodError undefined method 'dlopen' for Fiddle:Module`. Removing
`rb-readline` may be a temporary fix it if turns out that this is a bug
with rb-readline or some other upstream bug.
2014-11-06 14:52:49 -06:00
122928d952
Remove redundant rb-readline from Gemfile
...
MSP-11585
The entry in the gemspec is sufficient.
2014-11-06 14:51:10 -06:00
64fe2dd7d6
Land #4143 , @kernelsmith's get_custom_exe fix
...
* Initializes the exe variable
* Fixes #4131
2014-11-06 14:39:57 -06:00
b199820d23
init exe as nil instead of ''
2014-11-06 13:31:37 -06:00
6e51d84371
Land #4138 , @wchen-r7's reference cheking for module_reference.rb
...
* Fixes #4039
2014-11-06 10:51:29 -06:00
f7e308cae8
Land #4110 - Citrix Netscaler BoF
2014-11-06 00:04:17 -06:00
861443d947
Land #4144 , fix default template.pdf
2014-11-05 23:13:16 -06:00
c2391bf011
Add an R in /Info for the trailer dictionary to make it readable
2014-11-05 22:28:37 -06:00
265c178c52
fixes #4131 , EXE::Custom NameError
2014-11-05 22:10:54 -06:00
54c1e13a98
Land #4140 , @wchen-r7's default template for adobe_pdf_embedded_exe
...
* Fixes #4134
* Adds a default PDF template
2014-11-05 20:21:14 -06:00
adefb2326e
Land #4124 , @wchen-r7 fixes #4115 adding HTTP auth support to iis_webdav_upload_asp
2014-11-05 18:14:33 -06:00
496c8fa47d
Land #4136 , @todb-r7's fix to allow use of other ruby versions
...
Only rbenv and rvm have been tested.
For rbenv:
rbenv shell <VERSION>
For rvm:
rvm --create --versions-conf use <VERSION>@metasploit-framework
2014-11-05 15:27:53 -08:00
1b2554bc0d
Add a default template for CVE-2010-1240 PDF exploit
2014-11-05 17:08:38 -06:00
973c639c0e
Add note about rbenv for rvm .versions.conf local override
2014-11-05 15:03:02 -08:00
c833888c32
Just randomize
2014-11-05 15:53:06 -06:00
79cabc6d68
Fix clean up
2014-11-05 15:46:33 -06:00
c08993a9c0
Add module for ZDI-14-372
2014-11-05 15:31:20 -06:00
8da6e0bd5b
Fix bugs
2014-11-05 15:26:00 -06:00
5b8d9e1221
Fix typo
2014-11-05 15:14:35 -06:00
98f5ebd475
Only show bad refs when using -c
2014-11-05 15:07:40 -06:00
cca30b536f
Land #4094 , fixes for OWA brute forcer
...
Fixes #4083
Thanks TONS to @jhart-r7 for doing most of the work on this!
2014-11-05 14:00:26 -06:00
a46839726e
Make OWA 2013 the default, other fixes
...
Thanks @jhart-r7!
See rapid7#4083 and see rapid7#4094
2014-11-05 13:56:37 -06:00
6b0107190e
typo
2014-11-05 13:19:40 -06:00
231d03bd3b
Allow for locally chosen rubies
...
By ignoring .versions.conf, we can allow users pick their own versions
of ruby without having to jump through a bunch of hoops on keeping
.ruby-version straight between local and remote branches.
2014-11-05 13:18:26 -06:00
7ba705f23a
Add some randomized variables to JSP Payloads
...
Because the JASPER engine with Tomcat has been found
complaining about the out variable.
2014-11-05 12:16:33 -06:00
468b4a399a
Fix Rex::MIME::Message specs
2014-11-05 11:43:55 -06:00
741f99f118
Delete starting empty line
...
When header is empty it shouldn't add an starting empty
new line
2014-11-05 11:42:42 -06:00
3310342a95
Add save-as feature
...
The tool produces A LOT OF results so it's really painful to manually
copy and paste and to be able to use the data. So it should automatically
save.
Tagging the issue here because I forgot to do it:
Fix #4039
2014-11-05 10:58:41 -06:00
40ee03ee63
Land #4126 , rm Travis testing for 2.0
2014-11-05 10:18:57 -06:00
f34ad57199
Check module references
2014-11-05 09:57:13 -06:00
ff8d481eec
Update description to remove comments about defaults. Default to 2013
2014-11-04 21:21:19 -08:00
2c028ca7a6
Move redirect check before body check -- a redirect won't have a body
2014-11-04 14:19:21 -08:00
7855ede2de
Move userpass emptiness checking into setup
2014-11-04 14:07:39 -08:00
ebb8b70472
Land #4015 , another Android < 4.4 UXSS module
2014-11-04 15:52:29 -06:00
f8593ca1b5
Land #4109 , tnftp savefile exploit from @wvu-r7
2014-11-04 15:44:13 -06:00
5fb268bbdf
Updates to better OWA fix
2014-11-04 14:32:54 -06:00
714fd0bec6
Incorporate @jhart-r7's better fix
2014-11-04 14:02:37 -06:00
b0e388f4c3
Land #3516 , @midnitesnake's snmp_enumusers fix for Solaris, OS X
2014-11-04 08:23:16 -08:00
b45cbfdf53
Land 4127, fix broken refactor in util/exe
2014-11-04 07:51:12 -06:00
333d420c94
Fix refactoring bug from 23 october in util/exe
...
23 October, {} instead of #{} totally break windows service generation
f19b093529 (diff-0f5729034d8b0b321e738f2fc047854fL578)
2014-11-04 11:59:36 +01:00
1a2b1db0d5
Merge pull request #3 from jhart-r7/landing-3516-jhart
...
Numerous cleanups for snmp_enumusers
2014-11-04 06:46:32 +00:00
400ef51897
Land #4076 , exploit for x7chat PHP application
2014-11-03 18:22:04 -06:00
3bf7473ac2
Add github pull request as reference
2014-11-03 18:18:42 -06:00
44a2f366cf
Switch ranking
2014-11-03 18:06:09 -06:00
039d3cf9ae
Do minor cleanup
2014-11-03 18:04:30 -06:00
sinn3r
Samuel Huckins
Joshua Smith
Luke Imhoff
jvazquez-r7
Jon Hart
Tod Beardsley
William Vu
agix
midnitesnake