metasploit-framework
metasploit-framework copied to clipboard
rapid7
Metasploit Framework
Extension of https://github.com/rapid7/metasploit-framework/pull/17495 Updating the Gemfile to pull in the gem to see if CI will pass
This adds one final F5 module - a privilege escalation by creating a new user account using the MCP protocol and globally-accessible socket. ## Verification - [ ] Start `msfconsole`...
This PR makes use of the following CVE-2022-3699 [PoC](https://github.com/alfarom256/CVE-2022-3699) in combination with the Reflective DLL module template. ## Verification List the steps needed to make sure this thing works -...
### Note If a user had their `features set datastore_fallbacks false` as well as saved options. The options would continue to fail to validate and would accept any value and...
With the introduction of SCTP socket support in Rex::Socket via https://github.com/rapid7/rex-socket/pull/56, Framework can utilize this protocol for session transports similarly to TCP as it is a stream-wise transport. Implement bind...
## Summary Brief explanation of the feature. On arch linux the metasploit-framework package is outdated and don't install properly. Requires installing RVM and manually installing the gems in the directory...
## Steps to reproduce Noticed when testing https://github.com/rapid7/metasploit-framework/pull/17374 When loot is stored, it persists locally: https://github.com/rapid7/metasploit-framework/blob/37fe3b909a298e46db21380ebcda7965ad6fe492/lib/msf/core/auxiliary/report.rb#L417-L430 But when the ccache content and file name is sent to the remote DB,...
Using Rex' various gems without Msf will result in errors when the logging subsystem is undefined (as that remained in Msf during the great Rex excision). This manifests in rex-socket...
- https://github.com/rapid7/metasploit-framework/pull/17300#discussion_r1080658972 - the links need to reflect the new wiki location - `upload_and_chmodx` i believe does a `register_files_for_cleanup` and thus no longer needs to explicitly call it - prob...
Update pre-commit-hook.rb so that we run msftidy_docs.rb on PR submissions that modify documentation
This updates the `pre-commit-hook.rb` file that is already run in our lint GitHub Actions via https://github.com/rapid7/metasploit-framework/blob/master/.github/workflows/lint.yml#L59-L63 This will ensure that both `msftidy.rb` and `msftidy_docs.rb` are run on PR submission and...
