Spencer McIntyre
|
a23ef5ec5d
|
Set dynamic cached size on reverse powershell
|
2021-07-12 09:22:59 -04:00 |
Tim W
|
6300518e19
|
Fix #15254, set dynamic cached size on powershell payloads
|
2021-07-12 12:55:24 +01:00 |
Metasploit
|
5c7d282070
|
automatic module_metadata_base.json update
|
2021-07-12 06:28:12 -05:00 |
Tim W
|
39455827aa
|
Land #15254, use obfuscated powershell protection bypasses
|
2021-07-12 12:20:17 +01:00 |
Metasploit
|
0226be575c
|
automatic module_metadata_base.json update
|
2021-07-09 17:09:37 -05:00 |
Grant Willcox
|
02ecc22751
|
Land #15386, Add module for CVE-2021-35464; pre-auth RCE in ForgeRock AM (and OpenAM) server
|
2021-07-09 17:01:25 -05:00 |
Grant Willcox
|
5c8aa9b802
|
Add in ForgeRock demonstration and fix up some last minor issues with the documentation to make it more accurate
|
2021-07-09 16:43:25 -05:00 |
Spencer McIntyre
|
fba838f4e8
|
Update docs, pin version and fix the check method
|
2021-07-09 16:39:58 -04:00 |
Spencer McIntyre
|
9e61bf5752
|
Update the rex-powershell gem and unit tests
|
2021-07-09 15:35:37 -04:00 |
Grant Willcox
|
89b36bd1b8
|
Fix a small error in the logic so that we check the response body vs the response itself as per wvu's comment
|
2021-07-09 12:26:57 -05:00 |
Metasploit
|
10ab956c3f
|
automatic module_metadata_base.json update
|
2021-07-09 09:07:13 -05:00 |
Christophe De La Fuente
|
a5117119ee
|
Land #15154, process memory dump post module
|
2021-07-09 15:49:47 +02:00 |
Christophe De La Fuente
|
8b4bce35ca
|
Fix issues from rubocop and msftidy_docs.rb
|
2021-07-09 15:47:11 +02:00 |
Christophe De La Fuente
|
5a71e7b0ee
|
Merge remote-tracking branch 'upstream/pr/15154' into HEAD
|
2021-07-09 15:32:04 +02:00 |
Metasploit
|
f09fb52685
|
automatic module_metadata_base.json update
|
2021-07-09 06:30:52 -05:00 |
adfoster-r7
|
f189724174
|
Land #15217, Combine eternalblue modules
|
2021-07-09 12:23:34 +01:00 |
dwelch-r7
|
6817d0a0ee
|
Land #15382, Add tests for aux and exploit cmd_check and cmd_run
|
2021-07-09 11:03:12 +01:00 |
Metasploit
|
57fa188b10
|
automatic module_metadata_base.json update
|
2021-07-08 22:15:25 -05:00 |
William Vu
|
5447f09d2f
|
Land #15407, backported module print changes
|
2021-07-08 22:06:40 -05:00 |
William Vu
|
6fbaecf919
|
Backport print changes to recent modules
|
2021-07-08 21:26:35 -05:00 |
William Vu
|
25ff7dbc3e
|
Land #15405, Gemfile.lock update
|
2021-07-08 19:07:58 -05:00 |
William Vu
|
bc2776a55d
|
Update Gemfile.lock
|
2021-07-08 18:47:04 -05:00 |
Metasploit
|
93b5fbeb17
|
automatic module_metadata_base.json update
|
2021-07-08 17:05:22 -05:00 |
Grant Willcox
|
55f7bfe11d
|
Land #15368, Polkit D-Bus Authentication Bypass and Privilege Escalation (CVE-2021-3560)
|
2021-07-08 16:56:31 -05:00 |
Grant Willcox
|
570ba091f6
|
Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing
|
2021-07-08 16:24:01 -05:00 |
Grant Willcox
|
9f88ef0954
|
Fix up review comments
|
2021-07-08 16:22:29 -05:00 |
Jack Heysel
|
54ee8f7ae7
|
Added cmd_delay nil check, updated title
|
2021-07-08 16:20:45 -05:00 |
Jack Heysel
|
0f67dd5212
|
Fixed get_cmd_delay, reponded to comments
|
2021-07-08 16:20:38 -05:00 |
Jack Heysel
|
9a07039e7e
|
Updated docs
|
2021-07-08 16:09:15 -05:00 |
Jack Heysel
|
fdbf669da2
|
Fixed check for /bin/su
|
2021-07-08 16:09:12 -05:00 |
Jack Heysel
|
285a6338fa
|
Print error instead of failwith when exploit commands unsuccessful
|
2021-07-08 16:09:12 -05:00 |
Jack Heysel
|
f797f30651
|
Fixed call to write directory
|
2021-07-08 16:09:04 -05:00 |
Jack Heysel
|
1a73cfbe25
|
Updated check method
|
2021-07-08 16:09:03 -05:00 |
Jack Heysel
|
c5a9ecd45b
|
WritableDir as advanced opt
|
2021-07-08 16:09:03 -05:00 |
Jack Heysel
|
f87f831aba
|
Module updates + Docs
|
2021-07-08 16:09:02 -05:00 |
Jack Heysel
|
8d2d445699
|
Send one large command over many of smaller size
|
2021-07-08 16:08:36 -05:00 |
Jack Heysel
|
e7608d79f6
|
Polkit authentication bypass
|
2021-07-08 16:08:33 -05:00 |
Grant Willcox
|
8b3d057e9e
|
Address Spencer's comments by adding in an extra nil check and removing an unneeded library import
|
2021-07-08 13:07:51 -05:00 |
A Galway
|
cb31ffd82f
|
add support for authenticated login with smb1
|
2021-07-08 18:41:54 +01:00 |
Metasploit
|
7d5b15ef09
|
Bump version of framework to 6.0.53
|
2021-07-08 12:04:39 -05:00 |
A Galway
|
ccf5c36c44
|
combine both verseions of eb into a single module
|
2021-07-08 17:42:35 +01:00 |
A Galway
|
88e64fcfae
|
eternalblue_win8 ported from python to ruby
|
2021-07-08 17:42:30 +01:00 |
Alan Foster
|
e5241b412a
|
Add tests for aux and exploit cmd_check and cmd_run
|
2021-07-08 17:32:52 +01:00 |
dwelch-r7
|
6dd298ebb7
|
Land #15390, Add tests for argument parsing
|
2021-07-08 16:19:37 +01:00 |
Metasploit
|
e2be257581
|
automatic module_metadata_base.json update
|
2021-07-08 08:36:11 -05:00 |
Spencer McIntyre
|
dc9c0035ab
|
Land #15371, check if apport-cli is in $PATH
Fixes #15370
|
2021-07-08 09:28:35 -04:00 |
Spencer McIntyre
|
636b790acb
|
Update to using the AutoCheck mixin
|
2021-07-08 09:03:42 -04:00 |
Metasploit
|
72076efbaf
|
automatic module_metadata_base.json update
|
2021-07-08 02:45:17 -05:00 |
William Vu
|
f688b33a02
|
Land #15401, weblogic_admin_handle_rce heredoc fix
|
2021-07-08 02:36:53 -05:00 |
William Vu
|
fc1a34d7b1
|
Improve here doc formatting
|
2021-07-08 01:19:21 -05:00 |