Pedro Ribeiro
|
f88e68da25
|
fix msftidy stuff
|
2017-01-12 18:04:58 +00:00 |
Pedro Ribeiro
|
2827a7ea1a
|
add 660v2 sploit
|
2017-01-12 17:50:57 +00:00 |
Brent Cook
|
57e4bcbf71
|
Land #7454, add CVE-2013-6282, put_user/get_user exploit for Android
|
2016-12-24 14:44:34 -06:00 |
William Vu
|
934b05e736
|
Land #7310, at(1) persistence module
|
2016-12-22 03:33:58 -06:00 |
William Vu
|
b65a62ba93
|
Clean up module
|
2016-12-22 03:33:08 -06:00 |
Tim
|
c2dc350378
|
better fix for session compatibility
|
2016-12-15 17:41:44 +08:00 |
Brent Cook
|
fa016de78a
|
Land #7634, Implement universal HTTP/S handlers for Meterpreter payloads
|
2016-12-13 18:13:22 -06:00 |
Tim
|
fe9972cc25
|
fork early and use WfsDelay
|
2016-12-13 17:02:23 +08:00 |
Tim
|
7b7deb0588
|
better library cleanup
|
2016-12-13 17:02:23 +08:00 |
Tim
|
96b01effa7
|
cleanup library after use
|
2016-12-13 17:02:23 +08:00 |
Tim
|
909773120c
|
typos
|
2016-12-13 17:02:23 +08:00 |
Tim
|
ebf7ae0739
|
add CVE-2013-6282, put_user/get_user exploit for Android
|
2016-12-13 17:02:23 +08:00 |
wchen-r7
|
41355898fa
|
Remove extra def report_cred in vbulletin_vote_sqli_exec
|
2016-12-01 15:31:24 -06:00 |
wchen-r7
|
174cd74900
|
Land #7532, Add bypass UAC local exploit via Event Viewer module
|
2016-12-01 11:16:49 -06:00 |
wchen-r7
|
1e9d80c998
|
Fix another typo
|
2016-12-01 11:16:06 -06:00 |
wchen-r7
|
b8243b5d10
|
Fix a typo
|
2016-12-01 11:15:26 -06:00 |
William Vu
|
1d6ee7192a
|
Land #7427, new options for nagios_xi_chained_rce
|
2016-11-30 17:11:02 -06:00 |
William Vu
|
3e8cdd1f36
|
Polish up USER_ID and API_TOKEN options
|
2016-11-30 17:10:52 -06:00 |
OJ
|
ebf5121359
|
Merge branch 'upstream/master' into add-bypassuac-eventvwr
|
2016-12-01 07:58:16 +10:00 |
OJ
|
6890e56b30
|
Remove call to missing function
|
2016-12-01 07:57:54 +10:00 |
David Maloney
|
d1be2d735f
|
Land #7578, pdf-shaper exploit
Land lsato's work on the pdf-shaper buffer overflow
exploit
|
2016-11-30 11:13:12 -06:00 |
OJ
|
e8158bd200
|
Add multi platform type, wire into the multi stage
|
2016-11-28 09:34:09 +10:00 |
Brent Cook
|
59f3c9e769
|
Land #7579, rename netfilter_priv_esc to rename netfilter_priv_esc_ipv4
|
2016-11-21 17:59:29 -06:00 |
Prateep Bandharangshi
|
8869ebfe9b
|
Fix incorrect disclosure date for OpenNMS exploit
Disclosure date was Nov 2015, not Nov 2014
|
2016-11-21 16:44:36 +00:00 |
William Webb
|
6c6221445c
|
Land #7543, Create exploit for CVE-2016-6563 / Dlink DIR HNAP Login
|
2016-11-21 09:59:50 -06:00 |
OJ
|
6ae8a2dd2e
|
Remove unused/empty function body
|
2016-11-21 17:59:49 +10:00 |
OJ
|
8c036885bc
|
Fix msftidy issues
|
2016-11-21 17:23:03 +10:00 |
OJ
|
e226047457
|
Merge 'upstream/master' into the bypassuac via eventvwr mod
|
2016-11-21 17:18:40 +10:00 |
Brent Cook
|
005d34991b
|
update architecture
|
2016-11-20 19:09:33 -06:00 |
Brent Cook
|
f313389be4
|
Merge remote-tracking branch 'upstream/master' into land-7507-uuid-arch
|
2016-11-20 19:08:56 -06:00 |
h00die
|
cfd31e32c6
|
renaming per @bwatters-r7 comment in #7491
|
2016-11-18 13:52:09 -05:00 |
Louis Sato
|
920ecf6fc5
|
finishing metacoms work for pdf-shaper-bo
|
2016-11-18 11:36:02 -06:00 |
wchen-r7
|
4596785217
|
Land #7450, PowerShellEmpire Arbitrary File Upload
|
2016-11-17 17:47:15 -06:00 |
wchen-r7
|
c0af5b690d
|
Land #6638, add local exploit module to execute payload w/ stealth
|
2016-11-16 16:25:15 -06:00 |
wchen-r7
|
e1ff37f3eb
|
Title change and handling Rex::TimeoutError exception
|
2016-11-16 16:23:44 -06:00 |
Brendan
|
18bafaa2e7
|
Land #7531, Fix drb_remote_codeexec and create targets
|
2016-11-16 12:58:22 -06:00 |
wchen-r7
|
7b83720b90
|
Bring #6638 up to date
|
2016-11-15 12:27:05 -06:00 |
Brent Cook
|
b56b6a49ac
|
Land #7328, Extend lsa_transname_heap exploit to MIPS
|
2016-11-15 07:37:19 -06:00 |
wchen-r7
|
fa9f2b340e
|
def setup isn't needed
|
2016-11-14 15:52:02 -06:00 |
wchen-r7
|
bab07b5691
|
Bring #7540 up to date
|
2016-11-14 14:59:21 -06:00 |
Jeffrey Martin
|
c458d662ed
|
report correct credential status as successful
|
2016-11-14 12:27:22 -06:00 |
Jeffrey Martin
|
4ae90cbbef
|
Land #7191, Add exploit for CVE-2016-6267 - Trend Micro Smart Protection Server authenticated RCE.
|
2016-11-14 12:06:02 -06:00 |
William Webb
|
4e40546958
|
Land #7502, Disk Pulse Enterprise Login Buffer Overflow
|
2016-11-14 10:28:53 -06:00 |
Brent Cook
|
4f323527c9
|
Land #7549, Deprecate/move wp_ninja_forms_unauthenticated_file_upload
|
2016-11-14 03:00:02 -06:00 |
Pedro Ribeiro
|
908713ce68
|
remove whitespace at end of module name
|
2016-11-14 08:35:34 +00:00 |
Chris Higgins
|
4e9802786c
|
Removed spaces causing build to fail
|
2016-11-13 21:46:24 -06:00 |
Pearce Barry
|
9eb9d612ca
|
Minor typo fixups.
|
2016-11-11 16:54:16 -06:00 |
Pearce Barry
|
1dae206fde
|
Land #7379, Linux Kernel BPF Priv Esc (CVE-2016-4557)
|
2016-11-11 16:50:20 -06:00 |
wchen-r7
|
8cd9a9b670
|
Deprecate wp_ninja_forms_unauthenticated_file_upload
wp_ninja_forms_unauthenticated_file_upload actually supports
multiple platforms.
Instead of using:
exploit/unix/webapp/wp_ninja_forms_unauthenticated_file_upload
Please use:
exploit/multi/http/wp_ninja_forms_unauthenticated_file_upload
|
2016-11-10 11:17:09 -06:00 |
scriptjunkie
|
268a72f210
|
Land #7193 Office DLL hijack module
|
2016-11-08 23:15:27 -06:00 |