h00die
ec8ee2814a
fix spelling in spec folder
2024-01-07 13:42:50 -05:00
adfoster-r7
ee3b8b40b6
Land #18669 , Print additional settings notice on non-empty datastore values
2024-01-05 17:00:28 +00:00
sjanusz-r7
e0804cf0cb
Print additional settings notice on non-empty datastore values
2024-01-05 13:59:31 +00:00
Metasploit
08beaddf0a
automatic module_metadata_base.json update
2024-01-04 17:49:52 -06:00
bwatters
cdfa421d15
Land #18515 , Add java target for ManageEngine ServiceDesk Plus CVE-2022-47966
...
Merge branch 'land-18515' into upstream-master
2024-01-04 17:25:08 -06:00
adfoster-r7
50579fb1de
Land #18666 , Fix the save command when dns_feature is disabled
2024-01-04 22:49:05 +00:00
Spencer McIntyre
8d4142a8c7
Fix the save command when dns_feature is disabled
2024-01-04 17:08:29 -05:00
Metasploit
d7f2ed4e4a
Bump version of framework to 6.3.51
2024-01-04 12:58:16 -06:00
Metasploit
9dca2e3820
automatic module_metadata_base.json update
2024-01-04 11:37:35 -06:00
Spencer McIntyre
2028fbd226
Land #18404 , Working Module for CVE-2023-38146
2024-01-04 12:20:26 -05:00
bwatters
f341f72c72
add AKA
2024-01-04 11:11:23 -06:00
bwatters
e4af94bb29
Pull in Spencer's file checks
...
Merge branch 'update-38146' into exploit/cve-2023-38146
2024-01-04 08:28:29 -06:00
adfoster-r7
1c5379918c
Land #18660 , ensure custom dns resolver support is fully behind a feature flag
2024-01-04 13:18:48 +00:00
dwelch-r7
5e59389d2b
Land #18661 , Update error message for meterpreter file contents test
2024-01-04 12:34:00 +00:00
adfoster-r7
00cfbc357a
Update error message for meterpreter file contents test
2024-01-04 12:13:10 +00:00
Dean Welch
216cc6762f
Put custom dns resolver behind feature flag
2024-01-04 11:18:47 +00:00
adfoster-r7
4c1e1f614d
Land #18657 , Autoload Metasploit Payloads Gem
2024-01-03 17:50:56 +00:00
Dean Welch
52971ad2f6
Autoload Metasploit Payloads Gem
2024-01-03 16:24:12 +00:00
Metasploit
d5a59ceef1
automatic module_metadata_base.json update
2024-01-03 06:27:08 -06:00
adfoster-r7
a9f5c11d68
Land #18484 , add ability to follow payload override in shell to meterpreter
2024-01-03 12:05:29 +00:00
Spencer McIntyre
97c3ccc8af
Keep the service running when a session is opened
2023-12-29 14:03:27 -05:00
Spencer McIntyre
d67d39ace6
Add error checking to #setup
2023-12-29 14:03:23 -05:00
Metasploit
2390058b37
automatic module_metadata_base.json update
2023-12-28 12:43:00 -06:00
Jack Heysel
11d58ef2e8
Land #18631 , Improve vScalation Priv Esc Check
...
This PR adds an improvement to the check method of the
vcenter_java_wrapper_vmon_priv_esc module. Before the module
would attempt to run stat on a file before checking if the file
existed on the system. This fixes that issue.
2023-12-28 13:16:11 -05:00
Metasploit
c162cf3aec
Bump version of framework to 6.3.50
2023-12-28 12:08:37 -06:00
Metasploit
f8d541daad
automatic module_metadata_base.json update
2023-12-28 11:58:41 -06:00
Jack Heysel
63eb5f2a35
Land #18632 , Add improvements to glibc tunables
...
This PR adds improvements to the glibc tunables module. In the
event the file command is not present on the target the module
will try to use the readelf command in order to get the ld.so
BuildID to determine whether or not the target is compatible with
exploit.
2023-12-28 12:41:52 -05:00
Metasploit
e9df84555e
automatic module_metadata_base.json update
2023-12-28 10:51:30 -06:00
Jack Heysel
beef573fb8
Land #18635 , Authenticated Splunk Info Disclosure
...
This PR adds a module for an authenticated Splunk information
disclosure. This module gathers information about the host
machine and the Splunk install including OS version, build,
CPU arch, Splunk licnese keys etc.
2023-12-28 11:20:52 -05:00
Jack Heysel
d6488dc0c3
Land #18610 , Enables Payloads File Warning
...
This PR enables the Metasploit Payload Warnings feature
by default. When enabled Metasploit will output warnings
about missing Metasploit payloads, for instance if they
were removed by antivirus etc.
2023-12-27 14:20:04 -05:00
jheysel-r7
8b970af7f6
Update modules/auxiliary/gather/splunk_raw_server_info.rb
2023-12-27 12:40:18 -05:00
jheysel-r7
f950711da1
Apply suggestions from code review
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
2023-12-27 12:37:17 -05:00
Metasploit
94a4a6173f
automatic module_metadata_base.json update
2023-12-22 04:26:48 -06:00
Christophe De La Fuente
3182cb4000
Land #18612 , Craft CMS unauthenticed RCE [CVE-2023-41892]
2023-12-22 10:59:39 +01:00
bwatters
ce43db0904
Fix TBDs and give better documentation.
2023-12-21 16:18:36 -06:00
n00bhaxor
54df3d25e0
Merge pull request #1 from h00die/splunk
...
splunk 6.6.0+
2023-12-21 13:12:19 -05:00
Metasploit
d461187d58
Bump version of framework to 6.3.49
2023-12-21 12:07:52 -06:00
h00die-gr3y
4c404765a4
Final update to the module based on cdelafuente-r7 comments
2023-12-21 12:06:21 +00:00
h00die
0394f5f7ad
splunk 6.6.0+
2023-12-20 20:47:04 -05:00
bwatters
78bac2636b
Add documentation
2023-12-20 18:44:05 -06:00
bwatters
7fafab9680
Bring in zerosteiner's PACKME_VERSION edit
2023-12-20 16:46:44 -06:00
bwatters
6f17088e33
Fix some linting
2023-12-20 16:44:49 -06:00
Spencer McIntyre
6fc0704930
Land #18477 , Add docs for nessus_rest_login
2023-12-20 16:49:09 -05:00
Spencer McIntyre
300c53d005
Fix typos and tweak the section order
2023-12-20 16:31:52 -05:00
jvoisin
fc66cd1522
Improve a bit glibc_tunables_priv_esc
...
- Fix some typos
- Add a check via `readelf` should `file` not be available
- Add a message before launching the exploit, since it might take some time to finish.
2023-12-20 20:59:47 +01:00
Metasploit
aebda4f78c
automatic module_metadata_base.json update
2023-12-20 13:21:40 -06:00
n00bhaxor
a31de9eb05
Adding Splunk Info Disclosure module.
2023-12-20 14:07:50 -05:00
Christophe De La Fuente
fb26c93291
Land #18541 , Glibc Tunables Privilege Escalation CVE-2023-4911 (Looney Tunables)
2023-12-20 20:04:21 +01:00
Metasploit
e0f20454ea
automatic module_metadata_base.json update
2023-12-20 12:17:22 -06:00
Jack Heysel
77fb5d02b2
Fixed up indentation and rubocop complaints
2023-12-20 13:16:32 -05:00