Metasploit
2ccce813e0
automatic module_metadata_base.json update
2018-12-10 08:06:37 -08:00
Brent Cook
bc6356a2cd
Land #11090 , update code and style for exploit/linux/local/glibc_origin_expansion_priv_esc
2018-12-10 09:59:03 -06:00
Brendan Coles
5bddc4e9ef
Land #11096 , Replace WsfDelay typo with WfsDelay in docs
2018-12-10 11:03:53 +00:00
Auxilus
bca4ae03ff
Replace WsfDelay with WfsDelay
2018-12-10 16:02:19 +05:30
Metasploit
aa56f1e073
automatic module_metadata_base.json update
2018-12-09 22:47:11 -08:00
William Vu
82d34b9406
Land #11087 , File::binread for exploit_data
2018-12-10 00:38:51 -06:00
Milton-Valencia
565f2e3e38
wait wrong
2018-12-09 19:23:54 -06:00
Milton-Valencia
ee2ed46143
added date based on man page
2018-12-09 19:17:22 -06:00
Milton-Valencia
f6bfbddb8d
twks
2018-12-09 15:59:58 -06:00
Milton-Valencia
15aaaa4f21
removed 0 just saw...
2018-12-09 15:39:27 -06:00
Milton-Valencia
2beddf1012
req changes
2018-12-09 15:01:09 -06:00
Brent Cook
52af87d278
Land #11091 , add chronos user
2018-12-09 09:24:06 -06:00
Shreyans Devendra Doshi
45c6f1ed62
Fix #11084 Add 'chronos' to unix_users.txt
...
This commit adds the username 'chronos' to the user list as it happens
to be the default username on ChromeOS, as highlighted by @h00die in
Issue #11084 .
2018-12-09 09:58:58 -05:00
Brendan Coles
237d3c86c4
Code cleanup and update style
2018-12-09 07:26:51 +00:00
Milton-Valencia
39229125b7
tweak
2018-12-09 00:22:49 -06:00
Milton-Valencia
02f3d4688f
changes
2018-12-09 00:10:54 -06:00
Milton-Valencia
69ed80f685
varys -> varies
2018-12-08 22:51:52 -06:00
Milton-Valencia
fcad3f0c8f
erlang cookie rce exploit module
2018-12-08 22:36:56 -06:00
Brendan Coles
a9c0a5d53d
Use ::File::binread for exploit_data file read
2018-12-09 04:09:56 +00:00
Metasploit
d9e7efa7e2
automatic module_metadata_base.json update
2018-12-08 07:59:36 -08:00
Brent Cook
d3fc707c98
Land #11080 , update mettle payloads
2018-12-08 09:51:37 -06:00
Metasploit
cff8816781
automatic module_metadata_base.json update
2018-12-08 07:28:08 -08:00
Brent Cook
3768f79568
Land #11085 , add lkrg_installed? checks to various modules
2018-12-08 09:19:33 -06:00
Brent Cook
733c2f637d
Land #11081 , Add Msf::Post::Linux::Kernel.lkrg_installed? method
2018-12-08 09:14:57 -06:00
Brendan Coles
d8ab6a552b
Add lkrg_installed? checks
2018-12-08 13:37:12 +00:00
Metasploit
52eb60469e
automatic module_metadata_base.json update
2018-12-08 05:07:49 -08:00
Brent Cook
2e5e392085
Land #11079 , add kernel configuration checks to local exploits
2018-12-08 06:58:48 -06:00
Brent Cook
0ce05f0c07
update payload sizes
2018-12-08 06:24:02 -06:00
Brent Cook
3dca52510d
pass NULL if the UA field is empty
2018-12-08 06:23:35 -06:00
Brent Cook
6f8fc55b86
set user agent in Windows reverse_http(s) stagers
2018-12-07 14:03:03 -06:00
Garvit Dewan
42c5a7d245
Update show plugins to show all available plugins as well as the loaded ones.
...
Fixes #11051
2018-12-08 01:19:44 +05:30
Brent Cook
df76521100
Land #11066 , add rpc output locking, fix logging
2018-12-07 13:49:10 -06:00
Brent Cook
7f4d97ef46
don't embed status characters in messages, use correct logging instead
2018-12-07 13:29:56 -06:00
Brent Cook
09ffce4ec5
fix mutex locking, push to rpcSend
2018-12-07 13:28:34 -06:00
Brendan Coles
80d83720df
Add Msf::Post::Linux::Kernel.lkrg_installed? method
2018-12-07 14:42:16 +00:00
Brendan Coles
275c043cfd
Add kernel_config checks
2018-12-07 03:28:17 +00:00
Brent Cook
0345c8f66c
update mettle payloads
...
This is a large update to mettle payloads including:
* Adds globbing support to the `ls` command (https://github.com/rapid7/mettle/pull/139 )
* Fixes crashes on iOS platforms when cryptTLV is enabled (https://github.com/rapid7/mettle/pull/142 )
* Fixes display of the OS version on macOS and iOS (https://github.com/rapid7/mettle/pull/143 )
* Fixes the local port handling for pivoted client network connections (https://github.com/rapid7/mettle/pull/144 )
* Fixes an unaligned memory access in TLV packet handling, needed for some CPUs (https://github.com/rapid7/mettle/pull/145 )
* Fixes some compatibility issues building on Solaris (https://github.com/rapid7/mettle/pull/147 )
* Updated libpcap, mbedtls, and libcurl to the latest versions (https://github.com/rapid7/mettle/pull/146 )
2018-12-06 21:16:41 -06:00
Brent Cook
9e110eb9fc
Land #10940 , add default service mapping to imports
2018-12-06 21:04:05 -06:00
Metasploit
273d26f173
automatic module_metadata_base.json update
2018-12-06 19:00:59 -08:00
Brent Cook
f4282bfb56
Land #11064 , Add Msf::Post::Linux::Kernel.kernel_config method
2018-12-06 20:52:12 -06:00
Brent Cook
310d6f0170
Land #11068 , Update db_connect help text
2018-12-06 20:32:13 -06:00
Brent Cook
7d8458d8d4
Land #11076 , Prevent storing empty config files as loot
2018-12-06 20:30:08 -06:00
Brent Cook
1515dffd06
Land #11062 , Suppress 'Permission denied' errors when enumerating SUID files
2018-12-06 20:22:44 -06:00
Brent Cook
71f84fe6a7
Land #11060 , Add checks to post/linux/gather/enum_protections
2018-12-06 20:17:50 -06:00
Brent Cook
7b654409f7
Land #11078 , add additional CVE for exploit/linux/http/php_imap_open_rce
2018-12-06 20:14:49 -06:00
Tod Beardsley
140833215f
Add CVE as issued by DWF
...
See discussion on #10987 .
Now that I said that out loud, I realize that the original PR for this
module is a really funny PR number.
2018-12-06 14:59:05 -06:00
Brendan Coles
eecc5d60e0
Prevent storing empty config files as loot
2018-12-06 13:06:50 +00:00
James Barnett
e36e27d91a
Port is optional for HTTP data services
2018-12-05 16:05:09 -06:00
James Barnett
1e57f025d9
Update db_connect help
2018-12-05 14:52:26 -06:00
Christopher Lee
b0560c1ec8
Centralize logging sync, fix minor logging issues
2018-12-05 12:42:44 -06:00