joev
f8609ab0ba
Add file format exploit for injecting code into unpackers.
2015-02-18 11:26:45 -06:00
Joshua Smith
14da69cb28
Land #4757 , adds RC for auto payload gen
...
Closes #4740
Normally we type a bunch of msfvenom/msfconsole commands to generate a
payload for setting up a handler, sometimes we're too lazy to type a
bunch of commands so this should make things a little bit easier.
2015-02-16 14:09:31 -06:00
Samuel Huckins
ce688f4247
Land #4765 , Rails4 compatible finder conversion
...
* find_or_initialize_by_DYNAMIC
2015-02-13 15:56:09 -06:00
Brent Cook
f6bc693bd4
Land #4767 : @wchen-r7 fixes DNS lookups for Shodan search module
2015-02-13 14:40:24 -06:00
sinn3r
fd441d2c5e
Fix #4764 , NameError unitialized constant Net::DNS in shodan_search
2015-02-13 14:40:23 -06:00
Samuel Huckins
7b7a6340c0
Land #4766 , fixes vuln import finder query
2015-02-13 14:29:04 -06:00
sinn3r
b197b98ab9
Land #4759 , fix ms09_067_excel_featheader
2015-02-13 13:25:15 -06:00
Christian Catalan
dc6a365a13
Fix finder query in Msf::DBManager::Vuln
...
MSP-12152
* This is part of updating finder queries to be Rails 4 compatibile
* In #find_vuln_by_details, pass in conditons hash crit rather than symbol :crit
2015-02-13 13:21:25 -06:00
sinn3r
6b99103cec
Land #4690 - Update Nessus plugin to support the latest REST API
...
Resolves #4447
2015-02-13 12:46:01 -06:00
Sonny Gonzalez
dc1eab377c
Rails 4 finder conversion: convert find_or_initialize_by_x_and_y
...
MSP-12153
* convert to where(conditions).first_or_initialize
2015-02-13 12:39:44 -06:00
sinn3r
bbf5fa881d
Fix help again
2015-02-13 12:06:56 -06:00
sinn3r
c78c40df78
Extra nessus_login in help
2015-02-13 12:00:54 -06:00
sinn3r
56454674f2
Fix nessus_help
...
Columns are arrays
2015-02-13 11:55:46 -06:00
sinn3r
b55fd0572d
Use print_status
2015-02-13 11:51:32 -06:00
sinn3r
f5e0dddd3c
Correct authentication
...
Can't always be true
2015-02-13 11:48:10 -06:00
sinn3r
9a56e5c4f9
Extra space
2015-02-13 11:40:49 -06:00
sinn3r
2f5fad4806
Share plugin name
2015-02-13 11:38:36 -06:00
William Vu
f7fa76ae14
Land #4760 , java_signed_applet .class cleanup
2015-02-13 10:06:27 -06:00
William Vu
17437a3813
Land #4762 , CVE reference for ie_uxss_injection
2015-02-12 22:04:41 -06:00
sinn3r
29163db7fc
Add CVE reference for ie_uxss_injection
2015-02-12 17:16:59 -06:00
jvazquez-r7
3ae3d56caa
Land #4745 , fixes #4711 , BrowserAutoPwn failing due to getpeername
2015-02-12 16:51:09 -06:00
jvazquez-r7
92422c7b9a
Save the output file on local_directory
2015-02-12 16:16:21 -06:00
Brent Cook
4da28324e7
expound on java signer build instructions
2015-02-12 16:13:08 -06:00
Brent Cook
7e9a331087
remove unused .class files
...
These were added for multi/browser/java_signed_applet, but the class
files are already packaged in a jar file, which is what is actually
used.
2015-02-12 16:08:29 -06:00
Christian Mehlmauer
55f57e0b9b
Land #4746 , WordPress photo-gallery exploit
2015-02-12 22:24:12 +01:00
Christian Mehlmauer
bce7211f86
added url and randomize upload directory
2015-02-12 22:16:37 +01:00
William Vu
39c0065560
Land #4758 , SMTPDeliver DATA header fix
2015-02-12 15:07:31 -06:00
Matt Buck
f0bf881cc3
Land #4720 , update Rails 3-style .find(:first)
...
Eliminate the Rails 3-style .find(:first) calls, and replace with
Rails 4-compatible .first().
Fixes #4720 , also see MSP-12012
2015-02-12 14:30:13 -06:00
David Maloney
72878e0c14
fixes bug with smtp header order
...
SMTP servers that support pipelining will not accept any
commands other than MAILFROM and RCPTTO before the DATA
command. We were sending Date and Subject before Data
which would cause some mailservers to suddenly drop
the connection refusing to send the mail.
MSP-12133
2015-02-12 14:13:39 -06:00
sinn3r
05d2703a98
Explain why obfuscation is disabled
2015-02-12 14:00:01 -06:00
William Vu
9b10cd5655
Land #4755 , @todb-r7's release fixes
2015-02-12 13:16:08 -06:00
William Vu
d7fa06de06
Fix off-by-one whitespace
2015-02-12 13:12:13 -06:00
Tod Beardsley
c156ed62a9
on, not of.
2015-02-12 12:56:53 -06:00
Tod Beardsley
e35f603888
Comma fascism
2015-02-12 12:49:45 -06:00
Tod Beardsley
d89eda65fa
Moar fixes, thanks @wvu-r7
...
See #4755
2015-02-12 12:46:38 -06:00
sinn3r
60c650d0c7
Add RC script for auto payload generation to starting a handler
...
Resolve #4740
Normally we type a bunch of msfconsole commands to generate a payload
to setting up a handler, sometimes we're really lazy to type a bunch
of commands so this should make things a little bit easier.
2015-02-12 12:23:34 -06:00
Tod Beardsley
e78d08e20d
Fix up titles, descriptions
2015-02-12 12:11:40 -06:00
sinn3r
50c72125a4
::Errno::EINVAL, disable obfuscation, revoke ms14-064
2015-02-12 11:54:01 -06:00
jvazquez-r7
868bf4bc0f
Land #4752 , @rastating's exploit for Maarch LetterBox file upload
2015-02-12 11:47:08 -06:00
jvazquez-r7
155651e187
Make filename shorter
2015-02-12 11:45:51 -06:00
jvazquez-r7
95bfe7a7de
Do minor cleanup
2015-02-12 11:45:51 -06:00
rastating
30f310321d
Added CVE reference
2015-02-12 11:45:51 -06:00
rastating
38ad960640
Add Maarch LetterBox file upload module
2015-02-12 11:45:51 -06:00
William Vu
309159d876
Land #4753 , updated ms14_070_tcpip_ioctl info
2015-02-12 09:57:29 -06:00
Spencer McIntyre
8ab469d3bd
Update ms14-070 module information and references
2015-02-12 09:51:01 -05:00
root
199dca75a6
Implement db_import and finalize plugin
2015-02-12 13:32:49 +05:00
Tod Beardsley
ab42bad460
Land #4751 , enable autofail on msftidy checks
...
Also, removes the datastore check from msftidy.
Fixes #3853 , finally.
2015-02-11 15:05:07 -06:00
William Vu
9b2fad24e0
Add new comment about post-merge hook
2015-02-11 13:48:13 -06:00
William Vu
987fdbaeec
Remove extraneous comment
2015-02-11 13:46:25 -06:00
William Vu
4cd5e8f702
Reenable post-merge hook in Travis
2015-02-11 13:41:23 -06:00