Permalink
Commits on Sep 28, 2016
  1. Enhance #7360, more stance fixes

    bcook-r7 committed Sep 28, 2016
Commits on Sep 27, 2016
  1. Fix nonce bug in wp_ninja_forms_unauthenticated_file_upload

    wchen-r7 committed Sep 27, 2016
    If wordpress saves the nonce value in JavaScript, we could get an
    undefined method for nil.
  2. Fix msftidy errors

    OJ committed Sep 27, 2016
  3. Add LPE exploit module for the capcom driver flaw

    OJ committed Sep 27, 2016
    This commit includes:
    
    * RDI binary that abuses the SMEP bypass and userland function pointer
      invocation that is provided by the driver.
    * Related metasploit module.
    * Associated make.build to build from command line.
    * Updated command line build file.
    
    This also includes the beginnings of a new set of functions that help
    with the management/automation of kernel-related work on Windows for
    local priv esc exploits.
Commits on Sep 26, 2016
  1. Land #7360, restore passive?/aggressive? behavior

    hdm committed Sep 26, 2016
    This PR restores the mod.aggressive? and mod.passive? methods to the
    implementation prior to 0f7e3e9.
  2. Land #7334, Add aux module to exploit WINDOWS based (java) Colorado

    bwatters-r7 committed Sep 26, 2016
    FTP server directory traversal
  3. Make OSX screencapture silent

    735tesla committed Sep 26, 2016
    By default, the `screencapture` command on OS X plays a camera sound effect. The -x option silences this.
Commits on Sep 25, 2016
  1. binary drops work!

    h00die committed Sep 25, 2016
Commits on Sep 24, 2016
  1. Merge pull request #1 from bcook-r7/land-7353-bacon-too

    zerosum0x0 committed Sep 24, 2016
    Add module docs, credit
  2. Add module documentation

    bcook-r7 committed Sep 24, 2016
Commits on Sep 23, 2016
  1. Added offsets for version 9.2(4)14

    TheNaterz committed Sep 23, 2016
    This version of the ASA is patched and our offsets do not work currently. We may do more work on this to find a solution.
  2. Added offsets for 8.3(2)40

    TheNaterz committed Sep 23, 2016
  3. Added offsets for verion 8.3(2)-npe

    TheNaterz committed Sep 23, 2016
    We currently can't distinguish between 8.3(2) and 8.3(2)-npe versions from the SNMP strings. We've commented out the 8.3(2)-npe offsets, but in the future, we'd like to incorporate this version.