Simon Janusz
|
7260b220a2
|
Land #15498, Update postgres schema dump
|
2021-07-30 12:01:16 +01:00 |
adfoster-r7
|
18aef5e4db
|
Land #15492, Align support for negative session ids
|
2021-07-30 11:45:22 +01:00 |
sjanusz
|
8cb3731e46
|
Add support for negative session and job ids
|
2021-07-30 10:22:44 +01:00 |
adfoster-r7
|
6a00b2fa43
|
Update postgres schema dump
|
2021-07-29 19:41:49 +01:00 |
Metasploit
|
f30e7df229
|
Bump version of framework to 6.0.56
|
2021-07-29 12:04:20 -05:00 |
Metasploit
|
e3e562f13c
|
automatic module_metadata_base.json update
|
2021-07-29 12:01:27 -05:00 |
Spencer McIntyre
|
dba3db741a
|
Land #15462, [CVE-2021-36934] HiveNightmare
|
2021-07-29 12:53:48 -04:00 |
Metasploit
|
71c135029f
|
automatic module_metadata_base.json update
|
2021-07-29 11:46:46 -05:00 |
Spencer McIntyre
|
202f291d30
|
Land #15497, Add Pi-Hole DHCP Module Side Effects
|
2021-07-29 12:37:21 -04:00 |
adfoster-r7
|
951809e164
|
Land #15491, add module stability notes
|
2021-07-29 17:24:42 +01:00 |
space-r7
|
d69fb22699
|
add side effects to pihole dhcp module
|
2021-07-29 11:23:01 -05:00 |
space-r7
|
809081bc5f
|
Land #15279, add Pi-Hole lpe
|
2021-07-29 11:15:17 -05:00 |
space-r7
|
0561ae978f
|
fix typos, pihole version in docs
|
2021-07-29 11:13:58 -05:00 |
Spencer McIntyre
|
36cc2fd7e5
|
Rename an option and update docs for HiveNightmare
|
2021-07-29 12:07:56 -04:00 |
Yann Castel
|
fb99af1152
|
Add post module for HiveNightmare
correct CVE id
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
use of vars_get + delete payload after use
initial commit
Update hivenightmare_windows_sam_leak.rb
using railgun to read files + specific index option
Update hivenightmare_windows_sam_leak.rb
post module + add description + add documentation
Delete wp_plugin_modern_events_calendar_rce.rb
Delete wp_plugin_modern_events_calendar_rce.md
add scenario in doc
Update windows_sam_hivenightmare.md
Update windows_sam_hivenightmare.rb
Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
minor changes
msftidy
Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
|
2021-07-29 11:54:31 -04:00 |
Metasploit
|
f2ab7c3207
|
automatic module_metadata_base.json update
|
2021-07-29 10:36:04 -05:00 |
dwelch-r7
|
15edd30fa2
|
Land #15359, Fix #15218 authentication issue in ssh_login_pubkey
|
2021-07-29 16:27:35 +01:00 |
Metasploit
|
8a55249285
|
automatic module_metadata_base.json update
|
2021-07-29 08:34:49 -05:00 |
Spencer McIntyre
|
453172ae62
|
Land #15163, CVE-2021-31802 - R7000 RCE
|
2021-07-29 09:26:58 -04:00 |
Spencer McIntyre
|
9934f5d5ab
|
Remove a useless variable assignment for rubocop
|
2021-07-29 08:54:07 -04:00 |
Grant Willcox
|
a518fcac98
|
Add in timeout to 10th and final request to prevent module from throwing errors like it isn't working when it really is
|
2021-07-28 11:32:47 -05:00 |
cgranleese-r7
|
56510a2e8e
|
Updates some notes on modules that weren't passing tests due to new rubocop rule
|
2021-07-28 16:20:02 +01:00 |
Metasploit
|
12b7e613c5
|
automatic module_metadata_base.json update
|
2021-07-28 10:03:14 -05:00 |
adfoster-r7
|
8c43a7a512
|
Land #15465, Update local exploit suggester to handle nil targets and modules raising unintended exceptions
|
2021-07-28 15:55:41 +01:00 |
sjanusz
|
1288e85b6b
|
Improved exception handling
|
2021-07-28 10:22:15 +01:00 |
sjanusz
|
c63ef142c5
|
Update local exploit suggester to handle nil targets
|
2021-07-28 10:22:15 +01:00 |
Grant Willcox
|
a13f6a35dc
|
Use fail_with to properly handle the case where the target isn't the one we support
|
2021-07-27 13:00:44 -05:00 |
Grant Willcox
|
8dec3eaaaa
|
Lock target into a specific firmware version as we don't have time to spend trying to get the heap overflow working for other firmware versions
|
2021-07-27 13:00:43 -05:00 |
Grant Willcox
|
6a787336e4
|
Improve the check function by using a different file that leaks details about the version of the router firmware on more devices without running into the issue of some of them requiring authentication
|
2021-07-27 13:00:37 -05:00 |
Grant Willcox
|
98e69f7d10
|
Fix up namespacing for some Check codes that would be hit under certain conditions to be proper, preventing our module throwing errors
|
2021-07-27 13:00:29 -05:00 |
Grant Willcox
|
a53411229f
|
Move files over to start work on converting this into an auxiliary module
|
2021-07-27 13:00:17 -05:00 |
Grant Willcox
|
8954dd5d2d
|
Add in documentation and update module description to match
|
2021-07-27 13:00:15 -05:00 |
Grant Willcox
|
22c88bedcf
|
Fix a bug whereby the host would be hardcoded to the IP address 192.168.1.1 which may not always be the case
|
2021-07-27 13:00:02 -05:00 |
Grant Willcox
|
3b670644b2
|
Add in random characters into certain areas of the packets where 'a''s were being used previously to help make things harder to detect
|
2021-07-27 12:59:46 -05:00 |
Grant Willcox
|
d06b9c8bda
|
Add in first working copy of netgear_r7000_backup_cgi_heap_overflow_rce.rb
|
2021-07-27 12:59:38 -05:00 |
Spencer McIntyre
|
50bf0d4075
|
Land #15460, Fix localization issue in copy_file
|
2021-07-26 12:03:22 -04:00 |
Metasploit
|
1e9c83645d
|
automatic module_metadata_base.json update
|
2021-07-26 10:11:59 -05:00 |
Shelby Pace
|
183caff15c
|
Land #15418, add modern events calendar rce
|
2021-07-26 09:45:05 -05:00 |
Shelby Pace
|
38ae82155e
|
modify info, fix spacing
|
2021-07-26 09:43:34 -05:00 |
Metasploit
|
c66f25c658
|
automatic module_metadata_base.json update
|
2021-07-23 12:46:03 -05:00 |
Shelby Pace
|
9e95eb7be1
|
Land #15408, add Wordpress sp doc file upload
|
2021-07-23 12:36:29 -05:00 |
Shelby Pace
|
d207f994c0
|
modify doc description
randomize form data, formatting
|
2021-07-23 12:33:41 -05:00 |
adfoster-r7
|
a24d2f0a10
|
Land #15464, Add missing rex requires
|
2021-07-23 15:40:20 +01:00 |
Metasploit
|
855c8a86fd
|
automatic module_metadata_base.json update
|
2021-07-23 09:02:46 -05:00 |
cgranleese-r7
|
2844792484
|
Adds requires to support meterpreter_commands_dependencies.rb rubocop rule
|
2021-07-23 14:58:26 +01:00 |
adfoster-r7
|
c8f1c845ea
|
Land #15463, Reformats modules so they're compatible with Rubocop Rule
|
2021-07-23 14:55:31 +01:00 |
cgranleese-r7
|
9e7859ed25
|
Reformats some modules so they can be run with new meterpreter_commands_dependencies.rb Rubocop rule
|
2021-07-23 14:40:19 +01:00 |
Hakyac
|
0f8e256d52
|
Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:12:57 +02:00 |
Hakyac
|
13678f5140
|
Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:12:51 +02:00 |
Hakyac
|
1a55cfc88c
|
Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:12:10 +02:00 |