50048 Commits (ed98fc8b713d966db89e6479ccbb334e5f99eaf2)

All Branches

Search

Author	SHA1	Message	Date
Brent Cook	2e5e392085	Land #11079, add kernel configuration checks to local exploits	2018-12-08 06:58:48 -06:00
Brent Cook	0ce05f0c07	update payload sizes	2018-12-08 06:24:02 -06:00
Brent Cook	3dca52510d	pass NULL if the UA field is empty	2018-12-08 06:23:35 -06:00
Brent Cook	6f8fc55b86	set user agent in Windows reverse_http(s) stagers	2018-12-07 14:03:03 -06:00
Garvit Dewan	42c5a7d245	Update show plugins to show all available plugins as well as the loaded ones. ... Fixes #11051	2018-12-08 01:19:44 +05:30
Brent Cook	df76521100	Land #11066, add rpc output locking, fix logging	2018-12-07 13:49:10 -06:00
Brent Cook	7f4d97ef46	don't embed status characters in messages, use correct logging instead	2018-12-07 13:29:56 -06:00
Brent Cook	09ffce4ec5	fix mutex locking, push to rpcSend	2018-12-07 13:28:34 -06:00
Brendan Coles	80d83720df	Add Msf::Post::Linux::Kernel.lkrg_installed? method	2018-12-07 14:42:16 +00:00
Brendan Coles	275c043cfd	Add kernel_config checks	2018-12-07 03:28:17 +00:00
Brent Cook	0345c8f66c	update mettle payloads ... This is a large update to mettle payloads including: * Adds globbing support to the `ls` command (https://github.com/rapid7/mettle/pull/139) * Fixes crashes on iOS platforms when cryptTLV is enabled (https://github.com/rapid7/mettle/pull/142) * Fixes display of the OS version on macOS and iOS (https://github.com/rapid7/mettle/pull/143) * Fixes the local port handling for pivoted client network connections (https://github.com/rapid7/mettle/pull/144) * Fixes an unaligned memory access in TLV packet handling, needed for some CPUs (https://github.com/rapid7/mettle/pull/145) * Fixes some compatibility issues building on Solaris (https://github.com/rapid7/mettle/pull/147) * Updated libpcap, mbedtls, and libcurl to the latest versions (https://github.com/rapid7/mettle/pull/146)	2018-12-06 21:16:41 -06:00
Brent Cook	9e110eb9fc	Land #10940, add default service mapping to imports	2018-12-06 21:04:05 -06:00
Metasploit	273d26f173	automatic module_metadata_base.json update	2018-12-06 19:00:59 -08:00
Brent Cook	f4282bfb56	Land #11064, Add Msf::Post::Linux::Kernel.kernel_config method	2018-12-06 20:52:12 -06:00
Brent Cook	310d6f0170	Land #11068, Update db_connect help text	2018-12-06 20:32:13 -06:00
Brent Cook	7d8458d8d4	Land #11076, Prevent storing empty config files as loot	2018-12-06 20:30:08 -06:00
Brent Cook	1515dffd06	Land #11062, Suppress 'Permission denied' errors when enumerating SUID files	2018-12-06 20:22:44 -06:00
Brent Cook	71f84fe6a7	Land #11060, Add checks to post/linux/gather/enum_protections	2018-12-06 20:17:50 -06:00
Brent Cook	7b654409f7	Land #11078, add additional CVE for exploit/linux/http/php_imap_open_rce	2018-12-06 20:14:49 -06:00
Tod Beardsley	140833215f	Add CVE as issued by DWF ... See discussion on #10987. Now that I said that out loud, I realize that the original PR for this module is a really funny PR number.	2018-12-06 14:59:05 -06:00
Brendan Coles	eecc5d60e0	Prevent storing empty config files as loot	2018-12-06 13:06:50 +00:00
James Barnett	e36e27d91a	Port is optional for HTTP data services	2018-12-05 16:05:09 -06:00
James Barnett	1e57f025d9	Update db_connect help	2018-12-05 14:52:26 -06:00
Christopher Lee	b0560c1ec8	Centralize logging sync, fix minor logging issues	2018-12-05 12:42:44 -06:00
Brendan Coles	25e4c4734f	return nil rather than empty array	2018-12-05 23:44:13 +11:00
Brendan Coles	9d690f4f8c	Add Msf::Post::Linux::Kernel.kernel_config method	2018-12-05 11:19:36 +00:00
Julien Legras	224e782772	Cleaned the create_wp_config_file function	2018-12-05 10:56:22 +01:00
Julien Legras	2774c17ca1	Replaced print_error and return with a fail_with	2018-12-05 10:11:09 +01:00
Thomas Gregory	1bc024eaa7	Update cyberlink_lpp_bof.rb ... Update includes all suggestions and new targets (Win8.1 x64 and Win10 x64)	2018-12-05 14:53:10 +07:00
Brendan Coles	6040f779c5	Supress 'Permission denied' error in get_suid_files	2018-12-05 00:35:32 +00:00
Matthew Kienow	c7acbc08ab	Land #11058, fix SSH key displayed by creds cmd	2018-12-04 15:25:51 -06:00
James Barnett	5e29d1206d	Land #11059, provide meaningful error when workspace doesnt exist	2018-12-04 14:53:43 -06:00
Julien Legras	2735c71bda	Fixed typos, removed not working cleaning	2018-12-04 18:42:54 +01:00
James Barnett	8799c550e1	Parse public and private as correct sub-type	2018-12-04 10:57:54 -06:00
Brent Cook	55a9a12670	Land #10964, add initial golang modules for enumerating owa/o365	2018-12-04 10:33:37 -06:00
Christopher Lee	3d8ec178da	Remove unecessary run comment	2018-12-04 09:50:01 -06:00
Christopher Lee	60aba5ac44	Remove defunct comment	2018-12-04 09:41:39 -06:00
Brendan Coles	40906e0b36	Add checks to post/linux/gather/enum_protections	2018-12-04 11:57:24 +00:00
Julien Legras	b58342843b	Refactored check	2018-12-04 12:03:49 +01:00
Matthew Kienow	4f08243af9	Raise exception if workspace not found	2018-12-03 17:24:36 -06:00
Matthew Kienow	74a5d816be	Fix parentheses around args of method invocations	2018-12-03 17:19:59 -06:00
Metasploit	eb4b6a6db5	automatic module_metadata_base.json update	2018-12-03 15:17:23 -08:00
asoto-r7	c27c149a4d	Land #10947, HPE Intelligent Management Center Java Deserialization RCE	2018-12-03 17:07:31 -06:00
asoto-r7	0f82b207c4	hp_imc_java_deserialize: Repro steps for JSONSS ysoserial payload sections	2018-12-03 17:03:04 -06:00
James Barnett	d41f48853a	Use to_s when printing credential private	2018-12-03 16:46:30 -06:00
asoto-r7	3f930ff141	hp_imc_java_deserialize: Default WfsDelay to 10 seconds to increase reliability	2018-12-03 16:36:37 -06:00
Erin Bleiweiss	50c5eeee1d	Land #11056, Add definitions for Realm objects to the Credential API Doc	2018-12-03 13:22:33 -06:00
Brent Cook	042a793648	Land #11050, Add protection checks to Msf::Post::Linux::Kernel lib	2018-12-03 13:16:46 -06:00
Metasploit	9e6531d9b1	automatic module_metadata_base.json update	2018-12-03 10:59:10 -08:00
James Barnett	23bbe728c8	Add realm info to creds doc	2018-12-03 12:55:39 -06:00