ec8ee2814a
fix spelling in spec folder
2024-01-07 13:42:50 -05:00
ee3b8b40b6
Land #18669 , Print additional settings notice on non-empty datastore values
2024-01-05 17:00:28 +00:00
e0804cf0cb
Print additional settings notice on non-empty datastore values
2024-01-05 13:59:31 +00:00
08beaddf0a
automatic module_metadata_base.json update
2024-01-04 17:49:52 -06:00
cdfa421d15
Land #18515 , Add java target for ManageEngine ServiceDesk Plus CVE-2022-47966
...
Merge branch 'land-18515' into upstream-master
2024-01-04 17:25:08 -06:00
50579fb1de
Land #18666 , Fix the save command when dns_feature is disabled
2024-01-04 22:49:05 +00:00
8d4142a8c7
Fix the save command when dns_feature is disabled
2024-01-04 17:08:29 -05:00
d7f2ed4e4a
Bump version of framework to 6.3.51
2024-01-04 12:58:16 -06:00
9dca2e3820
automatic module_metadata_base.json update
2024-01-04 11:37:35 -06:00
2028fbd226
Land #18404 , Working Module for CVE-2023-38146
2024-01-04 12:20:26 -05:00
f341f72c72
add AKA
2024-01-04 11:11:23 -06:00
e4af94bb29
Pull in Spencer's file checks
...
Merge branch 'update-38146' into exploit/cve-2023-38146
2024-01-04 08:28:29 -06:00
1c5379918c
Land #18660 , ensure custom dns resolver support is fully behind a feature flag
2024-01-04 13:18:48 +00:00
5e59389d2b
Land #18661 , Update error message for meterpreter file contents test
2024-01-04 12:34:00 +00:00
00cfbc357a
Update error message for meterpreter file contents test
2024-01-04 12:13:10 +00:00
216cc6762f
Put custom dns resolver behind feature flag
2024-01-04 11:18:47 +00:00
4c1e1f614d
Land #18657 , Autoload Metasploit Payloads Gem
2024-01-03 17:50:56 +00:00
52971ad2f6
Autoload Metasploit Payloads Gem
2024-01-03 16:24:12 +00:00
d5a59ceef1
automatic module_metadata_base.json update
2024-01-03 06:27:08 -06:00
a9f5c11d68
Land #18484 , add ability to follow payload override in shell to meterpreter
2024-01-03 12:05:29 +00:00
97c3ccc8af
Keep the service running when a session is opened
2023-12-29 14:03:27 -05:00
d67d39ace6
Add error checking to #setup
2023-12-29 14:03:23 -05:00
2390058b37
automatic module_metadata_base.json update
2023-12-28 12:43:00 -06:00
11d58ef2e8
Land #18631 , Improve vScalation Priv Esc Check
...
This PR adds an improvement to the check method of the
vcenter_java_wrapper_vmon_priv_esc module. Before the module
would attempt to run stat on a file before checking if the file
existed on the system. This fixes that issue.
2023-12-28 13:16:11 -05:00
c162cf3aec
Bump version of framework to 6.3.50
2023-12-28 12:08:37 -06:00
f8d541daad
automatic module_metadata_base.json update
2023-12-28 11:58:41 -06:00
63eb5f2a35
Land #18632 , Add improvements to glibc tunables
...
This PR adds improvements to the glibc tunables module. In the
event the file command is not present on the target the module
will try to use the readelf command in order to get the ld.so
BuildID to determine whether or not the target is compatible with
exploit.
2023-12-28 12:41:52 -05:00
e9df84555e
automatic module_metadata_base.json update
2023-12-28 10:51:30 -06:00
beef573fb8
Land #18635 , Authenticated Splunk Info Disclosure
...
This PR adds a module for an authenticated Splunk information
disclosure. This module gathers information about the host
machine and the Splunk install including OS version, build,
CPU arch, Splunk licnese keys etc.
2023-12-28 11:20:52 -05:00
d6488dc0c3
Land #18610 , Enables Payloads File Warning
...
This PR enables the Metasploit Payload Warnings feature
by default. When enabled Metasploit will output warnings
about missing Metasploit payloads, for instance if they
were removed by antivirus etc.
2023-12-27 14:20:04 -05:00
8b970af7f6
Update modules/auxiliary/gather/splunk_raw_server_info.rb
2023-12-27 12:40:18 -05:00
f950711da1
Apply suggestions from code review
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
2023-12-27 12:37:17 -05:00
94a4a6173f
automatic module_metadata_base.json update
2023-12-22 04:26:48 -06:00
3182cb4000
Land #18612 , Craft CMS unauthenticed RCE [CVE-2023-41892]
2023-12-22 10:59:39 +01:00
ce43db0904
Fix TBDs and give better documentation.
2023-12-21 16:18:36 -06:00
54df3d25e0
Merge pull request #1 from h00die/splunk
...
splunk 6.6.0+
2023-12-21 13:12:19 -05:00
d461187d58
Bump version of framework to 6.3.49
2023-12-21 12:07:52 -06:00
4c404765a4
Final update to the module based on cdelafuente-r7 comments
2023-12-21 12:06:21 +00:00
0394f5f7ad
splunk 6.6.0+
2023-12-20 20:47:04 -05:00
78bac2636b
Add documentation
2023-12-20 18:44:05 -06:00
7fafab9680
Bring in zerosteiner's PACKME_VERSION edit
2023-12-20 16:46:44 -06:00
6f17088e33
Fix some linting
2023-12-20 16:44:49 -06:00
6fc0704930
Land #18477 , Add docs for nessus_rest_login
2023-12-20 16:49:09 -05:00
300c53d005
Fix typos and tweak the section order
2023-12-20 16:31:52 -05:00
fc66cd1522
Improve a bit glibc_tunables_priv_esc
...
- Fix some typos
- Add a check via `readelf` should `file` not be available
- Add a message before launching the exploit, since it might take some time to finish.
2023-12-20 20:59:47 +01:00
aebda4f78c
automatic module_metadata_base.json update
2023-12-20 13:21:40 -06:00
a31de9eb05
Adding Splunk Info Disclosure module.
2023-12-20 14:07:50 -05:00
fb26c93291
Land #18541 , Glibc Tunables Privilege Escalation CVE-2023-4911 (Looney Tunables)
2023-12-20 20:04:21 +01:00
e0f20454ea
automatic module_metadata_base.json update
2023-12-20 12:17:22 -06:00
77fb5d02b2
Fixed up indentation and rubocop complaints
2023-12-20 13:16:32 -05:00
h00die