648dca7bdb
fix silly documentation mistake
2017-08-17 14:43:58 +08:00
1c44092ba9
Add module documentation for post/linux/gather/checkcontainer
2017-08-16 21:15:56 -05:00
408a83a36b
Added comhijack module documentation
2017-08-16 13:05:27 +10:00
6ac8ed490b
Add documentation file
2017-08-15 16:56:20 +02:00
60f7534969
Add documentation
2017-08-15 03:43:22 +00:00
68f569d8f5
Land #8809 , Add documentation for OSX meterpreter
2017-08-13 09:31:28 -04:00
4315c2d8ea
Land #8802 , single-char args for terp scripts
2017-08-10 01:29:55 -05:00
bb5fffebc4
Land #8796 , SMBLoris Denial of Service Module.
2017-08-09 16:24:55 -05:00
901a1fdd1b
Minor tweaks.
2017-08-09 15:44:32 -05:00
dd79aa3afb
Land #8627 , Add post module multi/gather/jenkins
2017-08-09 10:43:21 -05:00
9c87f5f52f
commands should be highlighted
2017-08-08 12:45:39 +08:00
eb3e07ee10
minor tweak since background is default now
2017-08-08 12:37:28 +08:00
61bb59d653
fix typos
2017-08-08 12:31:30 +08:00
0fde536691
add documentation for OSX meterpreter
2017-08-08 12:26:22 +08:00
46ca543712
add docs for Android APK injection
2017-08-07 15:56:48 +08:00
ed2286c637
Fix references to multi_console_command
2017-08-06 18:58:38 -05:00
e1576154fb
Document the new padding option.
2017-08-06 18:34:56 -05:00
289f03241b
add module documentation
...
add module docs for the new smbloris DoS
2017-08-04 16:10:44 -05:00
da3ca9eb90
update some documentation
2017-08-03 17:09:44 -05:00
67dddd2402
Typo reported by @nixawk
2017-08-02 15:47:21 -05:00
3229320ba9
Code review feedback from @nixawk
2017-08-02 15:46:51 -05:00
565a3355be
CVE-2017-8464 LNK Remote Code Execution Vulnerability
...
This module exploits a vulnerability in the handling of Windows
Shortcut files (.LNK) that contain a dynamic icon, loaded from a
malicious DLL.
This vulnerability is a variant of MS15-020 (CVE-2015-0096). The
created LNK file is similar except in an additional
SpecialFolderDataBlock is included. The folder ID set in this
SpecialFolderDataBlock is set to the Control Panel. This is enought to
bypass the CPL whitelist. This bypass can be used to trick Windows into
loading an arbitrary DLL file.
2017-08-02 15:46:30 -05:00
d7d64286e2
Add documentation for exploit module Rancher Server - Docker Exploit
2017-07-28 08:04:59 +02:00
798dfe0b88
Add documentation
2017-07-26 10:18:23 +00:00
dd0c78484a
Fix mistake
2017-07-26 02:17:51 +02:00
cd418559bc
Docker Daemon - Unprotected TCP Socket Exploit
2017-07-26 00:21:35 +02:00
6300758c46
use https for metaploit.com links
2017-07-24 06:26:21 -07:00
fe5c6dc28f
Orientdb 2.2.x RCE - Update documentation
2017-07-24 10:09:06 +01:00
7c55cdc1c8
fix some module documentation
...
3 modules got documentation landed in the wrong spot. This also fixes a few
typos and improves formatting.
2017-07-23 07:46:52 -07:00
6bb745744b
Land #8471 , Add VICIdial user_authorization Unauthenticated Command Execution module
2017-07-21 15:57:08 -05:00
00a817d228
Orientdb 2.2.x RCE - Add documentation
2017-07-20 09:03:26 +01:00
ffad0d1bbf
Land #8559 , Ipfire oinkcode exec
2017-07-19 14:31:18 -05:00
47f55b1c81
add documentation
2017-07-18 21:30:53 -04:00
e93e524c3b
Merge branch 'upstream-master' into feature/rdp-scanner
2017-07-17 13:46:59 -07:00
e5ef737c21
Add documentation
2017-07-17 13:45:12 -07:00
8f6cac9c37
Land #8652 , rpc console write exploit
...
lands pr for the metasploit rpc console write exploit
2017-07-14 14:47:35 -05:00
de230478eb
Land #8566 , Add ye olde NNTP Login Utility scanner module
2017-07-13 13:19:34 -05:00
59de7d3635
Land #8671 , Add a module for CVE-2017-7615
2017-07-12 14:58:02 -05:00
6cb956ea81
Update rfpwnon.md
2017-07-09 05:07:36 -04:00
f10cf75ae0
Fix some stuff
2017-07-09 10:45:15 +02:00
e1b9330136
Add some documentation
2017-07-09 02:25:11 +02:00
e3f95954ba
Minor doc update.
2017-07-07 16:54:56 -05:00
95ba5d61ce
Move documentation to correct folder
2017-07-07 16:54:56 -05:00
8e2ff7a4c5
Add command stager and code cleanup
2017-07-07 16:54:56 -05:00
8f464e17a1
Land #8658 , Add Gather PDF Authors auxiliary module
2017-07-07 16:20:29 -05:00
afc704aea5
Ad documentation
2017-07-07 18:54:48 +00:00
f4820d24fb
add a few more AKA references
2017-07-06 22:43:46 -05:00
b0c5d734ee
s/swith/switch/ - ok @bcoles
2017-07-06 07:03:06 -05:00
baff473cae
Add Metasploit RPC Console Command Execution module
2017-07-05 08:48:35 +00:00
aa387e96a7
Land #8577 , Add SurgeNews User Credentials scanner
2017-07-03 10:14:03 -05:00
a2602bf514
Land #8600 , Add GoAutoDial 3.3 RCE Command Injection / SQL injection module
2017-06-30 17:32:51 -05:00
3d4d03c9b4
Land #8575 , Cerberus Helpdesk hash disclosure
2017-06-30 16:02:53 -05:00
71b2ddaa2c
Minor doc tweaking.
2017-06-30 15:53:27 -05:00
796fe99744
update docs to note that cluster mode is not necessary to exploit
2017-06-30 11:26:35 -04:00
40f0d36f6b
Land #8615 , add @artkond's DoS module for Cisco CVE-2017-3881
2017-06-30 11:17:09 -04:00
6349026134
Land #8442 , Exploit module for Backup Exec Windows Agent UaF
2017-06-28 10:39:28 -05:00
0d9f57ad7c
add @artkond's DoS module for Cisco CVE-2017-3881
...
This makes a few improvements, adds module docs.
2017-06-27 01:53:23 -05:00
05c72214ae
Land #8205 , Add Satel SenNet Command Exec Module
2017-06-25 18:01:44 -05:00
2918b3af13
Land #8599 , Dynamic DNS updater module
2017-06-25 15:08:22 -05:00
24fe6ac0fe
Update dns_dyn_update.md
2017-06-24 17:07:56 -05:00
cc9326d946
bcoles updates and table printing
2017-06-24 13:01:39 -04:00
f259682f12
Add documentation
2017-06-23 12:40:53 +00:00
18410d8230
Land #8540 , Add Symantec Messaging Gateway RCE
2017-06-22 19:00:32 -05:00
5e48a11e60
handle specific exceptions, update docs
2017-06-22 18:01:52 -05:00
6a261b172f
move from scanner to admin
2017-06-22 17:47:04 -05:00
cdf0091962
fixup docs
2017-06-22 16:07:34 -05:00
2410a3232f
Adding DNS Server Dynamic Update Record Injection module
2017-06-22 15:41:25 -05:00
4fdd77f19a
Land #8051 , Add Netgear DGN2200v1/v2/v3/v4 Command Injection Module
2017-06-22 11:46:40 -05:00
24d9bec0ae
Land #8260 , OpManager Version Check
2017-06-20 17:58:10 -05:00
700d392106
Add markdown docs.
2017-06-20 17:45:44 -05:00
3cd28b28e2
Land #8569 , Add ability to specify API token instead of password
2017-06-19 17:42:35 -05:00
58cd432120
Added docs, minor code tweak to remove duplication.
2017-06-19 17:35:41 -05:00
071dc09b1f
fix spelling
2017-06-19 10:31:24 -05:00
19ceb53304
Modified payload handling and uploaded documentation
2017-06-18 02:04:22 +10:00
b82051757d
Add SurgeNews User Credentials scanner module
2017-06-17 01:49:47 +00:00
41e96f9ff1
updated docs
2017-06-16 20:54:25 -04:00
f008f2aa8f
working code
2017-06-16 08:24:54 -04:00
414f440d62
Add documentation
2017-06-15 21:12:09 +00:00
46ffd250a0
module working and docs
2017-06-14 21:15:56 -04:00
0766f92013
Add option for workspace
2017-06-13 12:46:36 +00:00
bb9d1a6768
Land #8507 , Riverbed SteelHead VCX file read
2017-06-12 10:39:48 -05:00
6ae540d889
Adding Symantec messaging gateway rce
2017-06-10 12:23:12 +03:00
99fa52e660
Land #8434 , Add Windows 10 Bypassuac fodhelper module
2017-06-07 11:15:01 -05:00
bac17a8e80
Land #8053 , Add DC/OS Marathon UI Exploit
2017-06-06 09:29:26 -05:00
385daddb9d
Land #8499 , doc header consistency fixes
2017-06-05 17:40:15 -05:00
bc3b883758
Add docs, fix typo, add missing report mixin to avoid error.
2017-06-05 13:49:59 -05:00
ea5db9a039
working module
2017-06-02 23:09:19 -04:00
24505f91de
Add documentation
2017-06-01 06:03:10 +00:00
4eb86cae99
add L3 header for version under scenarios
2017-05-31 21:22:44 -04:00
1c23be91a7
sample output to scenarios conversion in docs
2017-05-31 21:21:38 -04:00
44c9292f92
Land #8485 docs for snare_registry
2017-05-31 20:51:01 -04:00
609b131e46
Land #8482 docs for processmaker_exec
2017-05-31 20:39:43 -04:00
31975b49ec
Update docs
2017-05-31 02:04:40 +00:00
30f652eb5c
Update docs
2017-05-31 01:46:18 +00:00
bac23757a4
Updated based on busterb comments
2017-05-30 09:33:03 -04:00
5042b04ff8
Add documentation
2017-05-30 09:29:01 +00:00
475510787d
Add documentation
2017-05-30 08:40:57 +00:00
a01a2ead1a
Land #8467 , Samba CVE-2017-7494 Improvements
2017-05-30 00:15:03 -05:00
28fb5cc7da
spelling
2017-05-30 00:14:33 -05:00
5698896672
Land #8323 wordpress pre4.6 dos
2017-05-29 07:59:43 -04:00
eb87185e25
fixed up docs format
2017-05-29 07:59:06 -04:00
72a5142e37
Update directory traversal DoS module and docs
2017-05-29 00:30:23 +02:00
2c3d5bd786
Add documentation
2017-05-28 04:51:39 +00:00
dfb5806dcb
Add documentation
2017-05-28 03:08:45 +00:00
d4ba28a20b
Land #8457 , Update multi/fileformat/office_word_macro to allow custom templates
2017-05-26 15:09:23 -05:00
b3a5a8840b
added ubuntu information
2017-05-26 14:10:26 -04:00
33ddef9303
Add documentation, add configurable depth path
2017-05-26 16:14:03 +02:00
ee13195760
Update office_word_macro exploit to support template injection
2017-05-25 15:53:45 -05:00
e8a34c5797
updates to docs
2017-05-25 16:53:39 -04:00
98ad754475
updated OJ info and wvu ubuntu box
2017-05-25 08:09:37 -04:00
b1514fcbc0
docs
2017-05-24 22:18:46 -04:00
af4eafdf70
Updated module and doc
2017-05-24 06:33:08 +05:30
d530c49645
Add documentation for CVE-2017-8895 exploit module
2017-05-24 00:28:37 +12:00
b7b1995238
Land #8274 , Wordpress admin upload `check`
2017-05-22 22:08:32 -05:00
47d2917a5f
Land #8418 , Add docs for 3 smb related aux modules
2017-05-22 22:04:22 -04:00
2fbbc98b5d
document little trick for those who read :)
2017-05-22 19:50:40 +01:00
93bb47d546
msftidy fix
2017-05-22 19:27:15 +01:00
6f1f630b0e
add documentation
2017-05-22 19:17:26 +01:00
467f1ce0ca
Land #8411 , Buffer overflow in VXSearch Enterprise v9.5.12
2017-05-22 07:37:31 -05:00
ae0fd66d91
smb docs looking good
2017-05-19 16:10:22 -04:00
48b85e9ad3
added info on pr flag for nmap
2017-05-19 13:10:01 -04:00
34f724cbc1
first add
2017-05-19 12:55:04 -04:00
3203937811
Added a confirmation tip, using nmap.
2017-05-19 00:52:23 +02:00
99eaffd232
Formatting fix (my bad).
...
[*] Start msfconsole
[*] use the module
[*] info -d
[ ] Verify spelling and grammar
2017-05-19 00:18:08 +02:00
dc436805bf
doc for arp_sweep aux scanner discovery mod #8296
2017-05-18 22:54:29 +02:00
ca6b00161d
VX Search Enterprise GET Buffer Overflow Doc
2017-05-18 17:12:10 +01:00
c0bf2cc6e7
Land #8401 , Buffer Overflow on Sync Breeze Enterprise 9.4.28
2017-05-17 23:39:50 -05:00
3360171977
Land #8319 , Add exploit module for Mediawiki SyntaxHighlight extension
2017-05-17 23:23:50 -05:00
1cc00b2944
Add vulnerable setup info in mediawiki_syntaxhighlight.md
2017-05-17 23:23:00 -05:00
ca1f8da7e5
Get around encoding issues in mediawiki_syntaxhighlight.md
2017-05-17 22:50:56 -05:00
b78749bc1b
Land #8221 , move autoroute
2017-05-17 15:17:45 -05:00
57eac49222
Add files via upload
2017-05-17 10:52:36 +01:00
7e2dab4ddc
Land #8303 , Buffer Overflow on Dupscout Enterprise v9.5.14
2017-05-17 01:04:59 -05:00
21e741b530
Comment out x86 targets in ms17_010_eternalblue.md
...
Still under development.
2017-05-16 19:52:44 -05:00
11da7c7c81
Land #8394 , Add Moxa Credential Recovery Module
2017-05-16 16:45:22 -05:00
77a9676efb
Land #8347 , Add Serviio Media Server checkStreamUrl Command Execution
2017-05-16 16:20:39 -05:00
e3f4cc0dfd
Land #8345 , WordPress PHPMailer Exim injection
...
CVE-2016-10033
2017-05-16 15:07:21 -05:00
e62fc3e93c
Land #8376 , Add BuilderEngine 3.5 Arbitrary file upload & exec exploit
2017-05-16 14:53:32 -05:00
3893bc4d83
Update doc with new prestager command
2017-05-16 14:48:12 -05:00
2ed8ae11b4
Add doc and make minor changes
2017-05-16 14:47:19 -05:00
eff4914240
Land #8381 , ETERNALBLUE exploit (to be continued)
2017-05-16 12:19:45 -05:00
77dd3d19b9
add moxa credentials recovery module documentation
2017-05-16 10:22:50 -04:00
4e3d5fa8a3
Added docs
2017-05-16 13:06:09 +02:00
8021b209ba
Update doc with new usage
...
Also kick version down to 4.6, since I wasn't using the tag originally.
2017-05-15 21:28:41 -05:00
2055bf8f65
Add note about PHPMailer being bundled
2017-05-15 14:29:11 -05:00
85d99d8cf1
Land #8373 , Add documentation for VMWare aux modules
2017-05-14 22:17:01 -05:00
e3dcf0ab2d
added docs
2017-05-14 19:22:26 -06:00
8be51bb56b
Land #8372 , rservice documentation
2017-05-14 19:31:55 -05:00
fb236df18f
added AIX reference
2017-05-12 19:15:00 -04:00
5d2b4e0fdb
links, and spelling
2017-05-12 19:10:37 -04:00
af4505a9de
land #8009 post module for jboss creds gather
2017-05-11 22:39:54 -04:00
6fa51aee8f
moving docs to correct folder
2017-05-11 22:33:00 -04:00
ea232cb39f
esx_fingerprint
2017-05-11 21:19:13 -04:00
f0e3a1f9da
vmauthd_version
2017-05-11 21:04:10 -04:00
4c40c6289e
add rlogin and rsh
2017-05-11 20:22:44 -04:00
7f34e985f7
rexec docs
2017-05-11 17:08:21 -04:00
0627b10996
Add Ubuntu version to module doc
2017-05-11 14:13:45 -05:00
bb815c0f8c
Add delete all to module doc
2017-05-10 23:01:03 -05:00
099fc0176a
move autoroute to a more sensible location
2017-05-10 23:01:02 -05:00
28c20cf35d
Land #7873 , haraka mail server command injection
2017-05-10 22:52:40 -05:00
0f089020cb
update example output from module
2017-05-10 22:52:13 -05:00
6e8f226f36
update docs, move module out of the way
2017-05-10 22:09:26 -05:00
a1d92573fc
Add module doc to appease the @h00die god
2017-05-10 15:17:20 -05:00
a3dc82d51c
Fix mispelling in meterpreter readme
2017-05-10 22:08:22 +02:00
faf01ed5ef
Land #8353 , add aux scanner for Intel AMT digest bypass
2017-05-09 18:45:21 -05:00
ad37f88a34
add module docs
2017-05-09 18:44:43 -05:00
96e3d61883
Land #8297 , add docs for energizer duo scanner and exploit
2017-05-08 17:14:36 -05:00
af3f1fbc37
Land #8332 , Canprobe Module
2017-05-07 12:20:27 -05:00
1c099a3d14
Minor doc tweaks.
2017-05-07 12:13:57 -05:00
283a40a279
Add documentation
2017-05-06 12:58:53 +00:00
01c726089a
Land #8334 , docs for http/crawler and http/robots
2017-05-05 17:31:45 -04:00
4309cc42a2
minor doc edits
2017-05-05 17:30:03 -04:00
cf0b3c9476
Add h00die's swaggy recommendations
2017-05-04 10:50:34 +02:00
df201e65b4
Documentation for the HTTP crawler
2017-05-03 18:20:35 +02:00
733c8c291c
Documentation for the robots_txt scanner module
2017-05-03 17:41:46 +02:00
9877aa9ef9
Added documentation and cleand up how STOPID worked
2017-05-02 18:57:32 -07:00
006ed42248
Added fix information
...
https://lists.wikimedia.org/pipermail/mediawiki-announce/2017-April/0002
09.html
2017-05-01 09:01:14 +02:00
a83a7a12e9
land #8320 , docs for ftp_login
2017-04-30 08:15:56 -04:00
a936713252
fixing formatting
2017-04-30 08:14:36 -04:00
a7436b6afa
Typo
2017-04-29 20:42:15 +02:00
0a7b9eedda
Typo
2017-04-29 20:39:17 +02:00
673dbdc4b9
Code review feedback from h00die
2017-04-29 20:37:39 +02:00
cae564ea3b
Highlighting filenames
2017-04-29 23:20:13 +05:30
9e7719c428
Adding white space
2017-04-29 20:30:28 +05:30
640368a391
Changing a line
2017-04-29 20:28:23 +05:30
a1765c9e8c
Add KB for ftp_login
2017-04-29 20:27:11 +05:30
0eb79e8c8c
Added docs for mediawiki_syntaxhighlight.rb
2017-04-29 16:14:25 +02:00
56990517b0
Update finger_users doc with nmap --script finger
2017-04-28 17:45:50 -05:00
24004f16b3
Land #8298 , docs for aux scanner finger
2017-04-28 10:36:50 -05:00
1843f03665
add nmap equivalent
2017-04-26 19:39:46 -04:00
7a6a124272
Land #8279 , POSIX Meterpreter replaced by Mettle
2017-04-26 18:32:17 -05:00
855aa3f850
Land #8295 , fix doc paths
2017-04-26 18:25:14 -05:00
12ed3dad20
update documentation to point to meterpreter again
2017-04-26 17:49:08 -05:00
cd038aed82
Dup Scout Enterprise documentation
2017-04-26 15:19:59 +01:00
bbee7f86b5
Land #8263 , Mercurial SSH exec module
2017-04-26 01:38:01 -05:00
ad084ae0cc
Land #8286 , x11_keyboard_exec docs
2017-04-26 01:12:41 -05:00
6739725489
Land #8285 , open_x11 docs
2017-04-26 01:12:27 -05:00
43847f9606
finger docs
2017-04-25 22:29:39 -04:00
c4bb918cca
addition of energizer duo docs
2017-04-25 22:05:55 -04:00
285358e2a4
fix paths
2017-04-25 21:12:55 -04:00
0ae6142b76
land #8283 , docs for ftp/anonymous
2017-04-25 20:55:17 -04:00
d1911a78c5
minor syntax change
2017-04-25 20:51:40 -04:00
323650dfe4
land #8284 docs for ftp_version
2017-04-25 19:37:04 -04:00
4c71a9908d
minor adjustment
2017-04-25 19:35:03 -04:00
320898697a
Land #8266 , Add Buffer Overflow Exploit on Disk Sorter Enterprise
2017-04-24 17:17:30 -05:00
e775f9ccbd
Land #8259 , Add post module to upload and execute a file
2017-04-24 17:00:55 -05:00
8c463ab570
Add doc for upload_exec
2017-04-24 17:00:09 -05:00
35bc1fbf28
Land #8282 , Add module doc for auxiliary/scanner/chargen/chargen_probe
2017-04-24 16:14:19 -05:00
5bbb4d755a
Land #8254 , Add CVE-2017-0199 - Office Word HTA Module
2017-04-24 16:05:00 -05:00
6029a9ee2b
Use a built-in HTA server and update doc
2017-04-24 16:04:27 -05:00
a404a1ed04
Rename disksorter_bof.rb.md to disksorter_bof.md
2017-04-24 21:58:37 +01:00
47e5f90ded
Add docs for wp_admin_shell_upload
2017-04-24 15:50:59 -05:00
7192836515
few edits added
2017-04-24 23:15:14 +05:30
47b8738bdc
few edits added
2017-04-24 23:08:20 +05:30
c5b594d928
Disk Sorter Enterprise Documentation
2017-04-24 14:59:47 +01:00
b2f9bbc43c
add xdotool
2017-04-23 16:04:11 -04:00
d1ed6afad1
x11 exploit docs
2017-04-23 15:48:48 -04:00
f84061e195
docs
2017-04-23 15:10:23 -04:00
03099cd57b
adding confirmation
2017-04-24 00:15:53 +05:30
2990c3b2fb
minor fix
2017-04-24 00:10:30 +05:30
98d1997cfa
KB for ftp_version
2017-04-24 00:09:20 +05:30
1650492e7b
update
2017-04-23 23:50:02 +05:30
ef29cf441a
adding sample output
2017-04-23 23:48:38 +05:30
56aed7a998
whitespace fix
2017-04-23 23:45:29 +05:30
e10a346d01
minor fixes
2017-04-23 23:41:58 +05:30
2abaa9cc0a
fixing numbers
2017-04-23 23:38:23 +05:30
5d71ce9508
adding confirmation
2017-04-23 23:37:04 +05:30
57f0a4f00c
KB for ftp/anonymous
2017-04-23 23:35:55 +05:30
562389df57
add comma
2017-04-23 11:49:52 -04:00
c6109f7138
add newline
2017-04-23 11:41:08 -04:00
e8e2a3dd61
chargen_probe docs
2017-04-23 11:38:29 -04:00
8e4c093a22
added version numbers
2017-04-22 09:45:55 -04:00
ca03140531
Add documentation for WiPG-1000 module
2017-04-21 15:37:47 +02:00
999a5dfb9c
Make tested against a bulleted list
2017-04-18 22:29:04 -04:00
9f892c56fb
land #8244 docs for manageengine_connectionid_write
2017-04-18 21:43:58 -04:00
a80355a4a7
Make code snippets easier to see
2017-04-18 19:50:57 -04:00
17aac0046b
Add documentation for mercurial_ssh_exec
2017-04-18 19:49:35 -04:00
0428e12b10
Land #8216 , Add CVE-2016-7552/CVE-2016-7547 exploit
2017-04-18 14:26:55 -05:00
0a085c4e83
add doc for exploit/windows/fileformat/office_word_hta
2017-04-18 03:26:10 -05:00
5f921859f0
adding hotlinks
2017-04-17 23:37:44 +05:30
84220d6617
Minor edits
2017-04-17 23:30:07 +05:30
7b936b0012
Land #8184 , convert IPMI protocol and modules to bindata
2017-04-17 07:40:15 -05:00
6f70efcfa1
add module documentation
2017-04-17 07:39:43 -05:00
7daec53106
huawei_hg532n_cmdinject: Improve overall documentation
...
- Add section on compiling custom binaries for the device
- Add documentation for Huawei's wget flavor (thanks @h00die)
- Abridge the module's info hash contents (thanks @wwebb-r7)
- Abridge the module's comments; reference documentation (@h00die)
2017-04-17 08:00:51 +02:00
f8c72df289
added some documentation
2017-04-16 08:41:52 -05:00
7b8e5e5016
Add Huawei HG532n command injection exploit
2017-04-15 21:01:47 +02:00
477b78a75e
adding :
2017-04-15 17:37:21 +05:30
aae009a542
missed heading
2017-04-15 17:35:52 +05:30
8ad80ea3d6
fixing whitespaces
2017-04-15 17:34:14 +05:30
39b228bb39
fixing headings
2017-04-15 17:32:35 +05:30
f573d004d2
KB for manageengine_connectionid_write
2017-04-15 17:30:44 +05:30
a9857eb1c2
Land #8099 , Aux module to launch instances in AWS
2017-04-14 14:12:10 -05:00
eb61241673
Land #8228 , New mainframe privesc payload for z/OS
2017-04-14 13:19:41 -05:00
d75f852d01
Land #8167 , Add MS17-010 auxiliary detection module
2017-04-14 13:00:16 -05:00
fa8011fd07
New mainframe privesc payload for z/OS
...
This module performs a privilege escaltion on mainframe systems
runing z/OS and using RACF for their security manager. A user
with any non-privileged credentials and the ability to write to
an apf authorized library can use this payload to add "root level"
privileges (e.g. SPECIAL / BPX.SUPERUSER) to their profile.
2017-04-11 15:04:44 -05:00
c867b7e228
Land #8204 , Add Cambian ePMP SNMP Configuration download
2017-04-11 10:59:13 -05:00
288e384164
Land #8189 , irssi password post gather module
2017-04-10 23:34:54 -05:00
376e791131
Merge branch 'master' into KB-for-rails_webconsole_v2
2017-04-10 20:03:03 -04:00
136030313d
fix single tick to `
2017-04-10 19:50:59 -04:00
7724797c73
fixing $ symbol
2017-04-10 19:45:48 -04:00
c00fb64e9d
Fixing code blocks
2017-04-10 19:45:48 -04:00
b7562e5c36
Adding new lines
2017-04-10 19:45:48 -04:00
88f6c90d4d
Fixing white spaces
2017-04-10 19:45:48 -04:00
53afe736af
Fixing some headings
2017-04-10 19:45:48 -04:00
16332cdf9b
Adding KB for rails_webconsole_v2
2017-04-10 19:45:48 -04:00
4286559273
Update docs for irssi post gather
2017-04-10 15:35:05 -04:00
2dd60d8498
Add subsection to scenarios
2017-04-10 14:40:24 -04:00
70a41cfbce
Remove options section
2017-04-10 14:38:45 -04:00
17eb27002f
Remove unnecessary docs
2017-04-10 14:37:23 -04:00
211ee3f622
Add IRSSI docs
2017-04-10 14:35:47 -04:00
64aecb59a1
fixing $ symbol
2017-04-08 23:01:28 +05:30
309876f2f6
Fixing code blocks
2017-04-08 22:43:58 +05:30
8f6f3bdb20
Adding new lines
2017-04-08 20:17:23 +05:30
a68b6f0ab9
Fixing white spaces
2017-04-07 04:29:31 +05:30
604ba7f43b
Fixing some headings
2017-04-07 04:27:50 +05:30
0a98d0fa8d
Adding KB for rails_webconsole_v2
2017-04-07 04:25:17 +05:30
e65eacce49
Add Satel SenNet Command Exec Module
2017-04-07 02:22:11 +05:30
074c4f6313
Minor update to description
2017-04-07 01:38:23 +05:30
3c189f0cb0
Adding Cambium SNMP Loot module
2017-04-07 01:32:45 +05:30
74dc7e478f
update piwik module
2017-04-05 20:19:07 +02:00
b6bf907cbd
Add docs for irssi_creds post gather
2017-04-05 09:54:22 -04:00
6c44edc58c
Land #8180 docs for iis_webdav_upload_asp
2017-04-04 16:37:08 -04:00
a0ec93ded8
add newline
2017-04-04 16:35:46 -04:00
64c06a512e
Land #8020 , ntfs-3g local privilege escalation
2017-04-04 09:48:15 -05:00
77d80b1a02
fixing newline
2017-04-03 17:04:45 +05:30
fef10b7be8
fixing minor issues
2017-04-03 16:54:45 +05:30
98ffa4d380
Land #7652 , add varnish cache CLI authentication scanner module
2017-04-02 21:52:45 -05:00
0c3ef4bf47
add note about later versions of Varnish
2017-04-02 21:52:20 -05:00
deb7701d3e
tweak misshapen output in MD->HTML
2017-04-02 21:44:50 -05:00
a34c01ebd2
Land #8137 shodan honeyscore module
2017-04-02 21:37:36 -04:00
3d860c2942
Change RHOST to TARGET
2017-04-02 21:10:42 -04:00
3ada361357
removing twice exploit
2017-04-02 14:33:23 +05:30
2c75526a12
Fixing white spaces
2017-04-02 14:31:11 +05:30
da14a80e8d
Fixing hashes
2017-04-02 14:28:04 +05:30
85a95233c7
Documentation on iis_webdav_upload_asp
2017-04-02 14:26:29 +05:30
ff27edab14
added docs
2017-04-01 21:58:07 -06:00
035f37cf42
Land #8144 , Add Moxa Device Discovery Scanner Module
2017-03-31 19:11:27 -05:00
f870f94fa9
Land #8163 , Add Cambium ePMP Arbitrary Command Execution
2017-03-31 19:06:19 -05:00
2b87923a19
fixes for markdown
2017-03-31 16:54:59 -04:00
823c1a6286
added more verifieds
2017-03-31 16:52:20 -04:00
1ce7bf3938
Land #8126 , Add SolarWind LEM Default SSH Pass/RCE
2017-03-31 11:21:32 -05:00
eeea584bf8
Land #8152 docs for adobe_flash_hacking_team_uaf
2017-03-30 09:14:47 -04:00
9a0c455f9f
add newline
2017-03-30 09:14:03 -04:00
691811af5a
Land #7994 , Add Windows Gather DynaZIP Saved Password Extraction post module
2017-03-29 16:04:09 -05:00
5bcddbd4a6
Land #8158 , Add documentation for glassfish_deployer
2017-03-28 10:52:20 -05:00
9f93bb052e
Add installation instructions for GlassFish doc
2017-03-28 10:51:39 -05:00
25f7835832
adding browser details
2017-03-28 08:09:28 +05:30
4075580249
Correction a/an
2017-03-28 08:06:01 +05:30
09214bbb7d
land #8154 docs for axis2_deployer
2017-03-27 20:47:22 -04:00
30896d1fab
Add Cambium ePMP Arbitrary Command Execution Module
2017-03-28 00:17:36 +05:30
66a585ab41
Land #8050 , Add Cambium ePMP System Hash Dumper
2017-03-27 12:08:53 -05:00
935c59306b
Land #7897 , Add Cambium ePMP 1000 Device Configuration file dumper
2017-03-27 12:05:11 -05:00
d705949b37
Land #7784 , Cambium ePMP 1000 Login Scanner
2017-03-27 12:01:56 -05:00
925088bf2a
Create moxa_discover.md
2017-03-27 11:44:03 -04:00
a1a3a2af7c
Documentation on glassfish_deployer updated 1.3
2017-03-27 19:26:51 +05:30
ea9de67ebb
Documentation on glassfish_deployer updated 1.2
2017-03-27 19:25:32 +05:30
ccccb38a1a
Documentation on glassfish_deployer updated 1.1
2017-03-27 19:24:46 +05:30
8ad61a11c8
Documentation on glassfish_deployer
2017-03-27 19:23:39 +05:30
b36836bb0a
Fix grammar mistake
2017-03-27 00:05:18 -05:00
4cba08a74d
Documentation on adobe_flash_hacking_team_uaf updated 1.6
2017-03-26 22:55:13 +05:30
48a56d8830
Documentation on axis2_deployer updated 1.4
2017-03-26 22:38:45 +05:30
8d618ce6a3
Documentation on axis2_deployer updated 1.3
2017-03-26 22:36:41 +05:30
2c47d798b6
Documentation on adobe_flash_hacking_team_uaf updated 1.5
2017-03-25 12:53:23 +05:30
6b6dd73b09
Documentation on adobe_flash_hacking_team_uaf updated 1.4
2017-03-25 12:52:12 +05:30
6ba6cd01eb
Updated documentation to detail aggregator
2017-03-24 22:57:48 -07:00
2a96190dac
Create shodan_honeyscore.md
2017-03-24 22:25:33 -04:00
11b251b928
Land #8151 docs update for netgear_r7000_cgibin_exec
2017-03-24 19:49:53 -04:00
5f4e82bf69
Land #8131 docs for ms15-034
2017-03-24 19:45:36 -04:00
b2e6c22fdf
Documentation on adobe_flash_hacking_team_uaf updated 1.3
2017-03-25 04:02:43 +05:30
cb65a4d909
Documentation on adobe_flash_hacking_team_uaf updated 1.2
2017-03-25 03:58:06 +05:30
52ff073d51
Documentation on adobe_flash_hacking_team_uaf updated 1.1
2017-03-25 03:56:19 +05:30
4b36a42eff
Documentation on adobe_flash_hacking_team_uaf
2017-03-25 03:54:17 +05:30
dd974612e8
Update netgear_r7000_cgibin_exec.md
2017-03-24 15:43:06 -04:00
9db2e9fbcd
Land #8146 , Add Default Secret & Deserialization Exploit for Github Enterprise
2017-03-24 14:38:47 -05:00
dfaec8bf3a
Land #8148 , Add module documentation for axis2_deployer
2017-03-24 11:55:51 -05:00
92c0748447
Land #8102 , Add a plugin to notify new sessions via SMS
2017-03-24 11:17:59 -05:00
03d6e4563c
Documentation on axis2_deployer updated 1.2
2017-03-24 21:14:56 +05:30
2f1eefebc7
Documentation on axis2_deployer updated 1.1
2017-03-24 21:12:33 +05:30
ffacac10c7
Documentation on axis2_deployer
2017-03-24 21:06:19 +05:30
3b062eb8d4
Update version info
2017-03-23 13:46:09 -05:00
2488100996
Add bounty info
2017-03-23 11:13:47 -05:00
196a0b6ac4
Add Default Secret & Deserialization Exploit for Github Enterprise
2017-03-23 10:40:31 -05:00
c87ea2107b
Add documentation
2017-03-23 12:49:50 +03:00
a93aef8b7a
Land #8086 , Add Module Logsign Remote Code Execution
2017-03-22 11:33:49 -05:00
b06d17baa1
Documentation on ms15_034_http_sys_memory_dump updated 1.5
2017-03-22 17:37:59 +05:30
1a8e8402ae
Land #8113 , SysGauge SMTP server validation sploit
2017-03-21 16:45:42 -05:00
69769b1ca4
Land #8036 , Fix run_as_psh with domain accounts
...
Missed a commit in this PR last time due to typo updating
the PR before merge.
2017-03-21 09:17:59 -05:00
00359b85c5
Documentation on ms15_034_http_sys_memory_dump updated 1.4 fixing white spaces
2017-03-21 19:43:35 +05:30
d54e35f40e
Documentation on ms15_034_http_sys_memory_dump updated 1.3 fixing white spaces
2017-03-21 17:40:07 +05:30
07d88a71cf
Documentation on ms15_034_http_sys_memory_dump updated 1.2 removing show opitions
2017-03-21 17:33:27 +05:30
Tim
james
OJ
Erik Lenoir
Brendan Coles
Brent Cook
William Vu
Pearce Barry
bwatters-r7
Josh Hale
David Maloney
Yorick Koster
Martin Pizala
Ricardo Almeida
thesubtlety
Jon Hart
Corey Harding
jvoisin
dmohanty-r7
William Webb
Rob Fuller
Rob Fuller
h00die
KINGSABRI
mccurls
Mehmet Ince
wolfthefallen
root
wchen-r7
juushya
Matthew Daley
Jeffrey Martin
amaloteaux
Renato Piccoli
Daniel Teixeira
James Lee
Patrick DeSantis
Gabriel Follon
zerosum0x0
Michael Scherer
Jon P
Craig Smith
Yorick Koster
itsmeroy2012
Matthias Brun
Jonathan Claudius
nixawk
Ahmed S. Darwish
mr_me
bigendiansmalls
h00die
Christian Mehlmauer
Carter
Javier Godinez