-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for splunk 7.2.4 to 'Splunk Custom App Remote Code Execution' #11577
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
it looks like we don't have any docs for this module. Excellent opportunity to make some!
Would you mind adding? Template is here: https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/module_doc_template.md
I have also included the documentation section as well |
It is required that code in your fork be merged from a unique branch in your repository to master in Rapid7's. Please create a new branch in your fork of framework and resubmit this from that branch.
This helps protect the process, ensure users are aware of commits on the branch being considered for merge, allows for a location for more commits to be offered without mingling with other contributor changes and allows contributors to make progress while a PR is still being reviewed. Closing based on the this requirement, please do resubmit from a unique branch. |
Hi
I have been working on integrating some changes to the 'Splunk Custom App Remote Code Execution' and including support for splunk 7.2.4 (it might even work on the whole 7 train up to 7.2.4)
Verification steps
List the steps needed to make sure this thing works
msfconsole
use exploit/multi/http/splunk_upload_app_exec
SET TARGET 1
SET RHOST 192.168.1.1
SET USERNAME admin
SET PASSWORD changeme
It has been tested successfully on both linux,macos (windows does not support python reverse shell but all the other available commands are working as expected)