Christian Mehlmauer FireFart

Organizations

@rapid7 @wpscanteam @BSidesVienna
FireFart commented on issue wpscanteam/wpscan#817
@FireFart

Hi @hubdotcom, unfortunately this is not possible in the current version. We plan to release this feature in the next major release but currently o…

@FireFart

:cry:

@FireFart
Premium Themes
@FireFart
  • @FireFart 72b8fae
    update information on front page
FireFart commented on pull request rapid7/metasploit-framework#5147
@FireFart

@void-in I think it's highly dependent on the application. For example if the payload is executed in the background/another thread the called site …

FireFart commented on pull request rapid7/metasploit-framework#5147
@FireFart

@void-in the short timeout is no catch all answer. It highly depends on the exploit and application if we need a shorter timeout. For example when …

FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

@TomSellers i removed the exploitdb link from the old issue and created 2 new entries for this one (one for revslider, one for showbizpro). This sh…

@FireFart

@pvdl sure feel free to put instructions in the readme (you can also edit it directly on github without checking it out)

FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

@TomSellers good point! I adopted the PR to now allow a custom regex. Sample call is now: check_version_from_custom_file('/test.html', /test: (.+)/)

@FireFart
@FireFart
Warn the user about probably missing SSL option
FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

['WPVDB', '7540']: https://wpvulndb.com/vulnerabilities/7540 Is this the same vulnerability? If so you can add this reference

FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

this can be removed because you already have EDB below

FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

I opened a new PR to also check custom files for a version here #5292 What do you think about it?

@FireFart
check version from custom file
1 commit with 109 additions and 0 deletions
FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

normally we do final_uri = normalize_uri(wordpress_url_plugins, 'revslider', 'temp', 'update_extract', 'revslider', php_pagename)

FireFart commented on pull request rapid7/metasploit-framework#5290
@FireFart

this should not be necessary

@FireFart
@FireFart
Detect unfinished installation
FireFart commented on issue wpscanteam/wpscan#812
@FireFart

so maybe they have some kind of brute force protection active?

@FireFart
Use wp-cli ?
@FireFart

jeah but what would be the benefit of using wp-cli instead of a DB dump?

@FireFart
@FireFart
  • @FireFart a935dd1
    remove --update before run
@FireFart

@erwanlr i did this to wpscan: wpscanteam/wpscan@2021809 will remove the --update call now

@FireFart
  • @FireFart 2021809
    warn the user to update his DB files
@FireFart
  • @FireFart 99d8faa
    switch from gnutls to openssl
@FireFart