e706e2b58d
Remove harmful default command to execute
2018-11-21 11:09:13 +02:00
7084538b8c
ibm_mq_channel_brute: Exception handling when channel.length > 20 chars
2018-11-20 16:24:17 -06:00
d2a5b966f3
Land #10875 , IBM WebSphere MQ Channel Name Bruteforce auxiliary module
2018-11-20 16:23:23 -06:00
288d78d372
Land #10352 , Add check/response for CVE-2017-12149
2018-11-20 13:11:05 -06:00
d5d8216377
Land #10977 , Add documentation and some enhancement to freesshd_authbypass module
2018-11-20 11:44:49 -06:00
bccb0972cf
Land #10984 , don't examine a nil object in ms15_034_ulonglongadd
2018-11-20 08:37:48 -06:00
63a2396626
updated testing branch to branch off master
2018-11-20 08:14:19 -06:00
901b51f247
Update modules/auxiliary/scanner/http/iis_shortname_scanner.rb
...
Co-Authored-By: egre55 <34132245+egre55@users.noreply.github.com>
2018-11-20 11:13:17 +00:00
6c382ba711
Update modules/auxiliary/scanner/http/iis_shortname_scanner.rb
...
Co-Authored-By: egre55 <34132245+egre55@users.noreply.github.com>
2018-11-20 11:13:05 +00:00
5e513b209d
Update modules/auxiliary/scanner/http/iis_shortname_scanner.rb
...
Co-Authored-By: egre55 <34132245+egre55@users.noreply.github.com>
2018-11-20 11:12:51 +00:00
52df29ebcc
test on branch off master
2018-11-19 15:08:38 -06:00
509e1c2587
Land #10973 , Rework DisclosureDate check in msftidy, including ISO 8601 support
2018-11-19 10:46:18 -06:00
d904b93ec9
fixed is_vul
2018-11-19 13:39:08 +05:30
4a22656005
fixes
2018-11-18 21:56:51 +00:00
8b63c85bd2
fixes
2018-11-18 21:21:28 +00:00
467e0877f5
res.code
2018-11-18 12:40:09 +00:00
b679bfa3d9
Carriage return errors fixed.
2018-11-18 03:29:17 +08:00
fd0f40a141
Add PowerShell as a separate target then set it as default.
2018-11-18 03:20:48 +08:00
90b9204703
Update DisclosureDate to ISO 8601 in my modules
...
Basic msftidy fixer:
diff --git a/tools/dev/msftidy.rb b/tools/dev/msftidy.rb
index 9a21b9e398..e9ff2b21e5 100755
--- a/tools/dev/msftidy.rb
+++ b/tools/dev/msftidy.rb
@@ -442,6 +442,8 @@ class Msftidy
# Check disclosure date format
if @source =~ /["']DisclosureDate["'].*\=\>[\x0d\x20]*['\"](.+?)['\"]/
d = $1 #Captured date
+ File.write(@full_filepath, @source.sub(d, Date.parse(d).to_s))
+ fixed('Probably updated traditional DisclosureDate to ISO 8601')
# Flag if overall format is wrong
if d =~ /^... (?:\d{1,2},? )?\d{4}$/
# Flag if month format is wrong
2018-11-16 12:18:28 -06:00
08b3efa046
Enhanced module and added documentation.
2018-11-16 21:18:45 +08:00
189f29e534
Land #10572 eaton ssh private key scanner
2018-11-15 17:16:36 -05:00
de014f0599
remove variable only used once
2018-11-15 17:14:13 -05:00
4987f67b9b
Land #10925 , smb_login error/status message
2018-11-14 13:19:04 -06:00
795aa3c99c
Land #10828 , git submodule url exec CVE-2018-17456
2018-11-14 12:39:13 -06:00
798d3156bc
Print git command for module
2018-11-14 10:57:36 -06:00
5e85683228
removed to_s from string
2018-11-13 15:28:55 -06:00
3849d5de18
resolve description update request
2018-11-13 16:21:43 -05:00
ac8932c144
update 9631 to a current branch
2018-11-13 15:15:25 -06:00
da134f06e3
Updated check method
...
Fixed check method and redundant variable declarations
2018-11-13 16:01:40 -05:00
f2712ecdf6
Land #10607 , Add External Module: office365userenum.py
2018-11-13 10:57:05 -06:00
7a4770790c
Land #10938 , add docs for modules and fix bug.
...
Add docs for auxiliary module http_basic/imap/mysql, and fix a bug
in modules/auxiliary/server/capture/mysql.rb
2018-11-13 16:22:03 +08:00
1c2da8a5c8
correct trailing space issue
2018-11-10 15:40:03 -05:00
33f624bbb2
Module updated to reflect requested changes
2018-11-10 14:36:06 -05:00
1f14a9846d
Land #10767 , Add Cisco Prime Infrastructure remote root exploit
2018-11-10 17:08:16 +00:00
bf15fa0770
hash not password for mysql
2018-11-09 18:32:21 -05:00
c31c75c790
fix mysql capture store creds
2018-11-09 18:18:50 -05:00
792b451f40
capture server docs and updates
2018-11-08 21:23:27 -05:00
f192b50a8e
Catch exceptions
2018-11-08 18:47:56 +00:00
88e4d384d2
increased default timeout value
2018-11-08 16:13:55 +00:00
3c6f2157ae
land #10895 fix vmware_http_login undefined variables
2018-11-07 08:45:51 -05:00
9dd0f2a5ea
modified to allow unix cmd for testing and other targets not supported, took out interpolation,notes section re-added
...
added notes section back in
2018-11-06 20:45:20 -06:00
682433f62e
smb_login error/status message
2018-11-05 17:49:58 -06:00
dd57b27652
Rename `hash` to `generate_process_hash`
...
In the interest of compatibility this uses a more descriptive name for
the process hash creation method instead of overriding ruby's hash method.
See https://docs.ruby-lang.org/en/2.0.0/Hash.html
2018-11-05 17:16:16 -06:00
aff4ef0752
land #10912 moving polycom exploit to misc folder
2018-11-05 16:54:24 -05:00
0c38babb9e
Land #10874 , rm size restriction from pyld_inject
2018-11-05 15:16:40 -06:00
f185c06204
Land 10794, Add support for ms17_010_eternalblue_win8 ProcessName option
...
Merge branch 'land-10794' into upstream-master
2018-11-05 15:08:59 -06:00
7ca2311325
Land #10792 , Add support for ms17_010_eternalblue ProcessName option
...
Merge branch 'land-10792' into upstream-master
2018-11-05 14:19:10 -06:00
1f0941101f
shut up, msftidy
2018-11-05 14:13:33 -06:00
4f2ba46125
Stop some of the rubocop carnage
2018-11-05 14:11:24 -06:00
a32d8083f0
Land #10847 - Add blueimp's jQuery (Arbitrary) File Upload
...
CVE-2018-9206
2018-11-05 11:37:20 -06:00
David Yates
asoto-r7
Shelby Pace
Brent Cook
Brendan Coles
Shaksham Jaiswal
egre55
Imran E. Dawoodjee
William Vu
h00die
Chris Higgins
Jacob Robles
BrianWGray
Alex Gonzalez
Green-m
root
Aaron Ringo
Jeffrey Martin
bwatters-r7
Wei Chen