-
Notifications
You must be signed in to change notification settings - Fork 13.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
phpmyadmin login scanner #5568
phpmyadmin login scanner #5568
Conversation
Hi @HugoDelval - please note the msftidy warnings building this pull request. Looks like some minor whitespace issues. |
Hi @bcook-r7 I wasn't aware of this feature (travis-ci), looks awesome ! |
@HugoDelval you'll want to revert those Gemfile changes, too. Module submissions pretty much never need to touch those. |
Done :) |
@HugoDelval Do you have any experience of rspec? Changing anything in lib require writing the specs. |
@void-in no I don't :/ I didn't know that ! |
@HugoDelval You can take a look at https://github.com/rapid7/metasploit-framework/blob/bf7e0695d0bae27a94772f7079221a5128795920/spec/lib/metasploit/framework/login_scanner/nessus_spec.rb as an example. If you didn't understand, it's no issue. I will wrote the specs for your module then. |
@void-in I am going to learn it but not right now, I guess there is no rush ? I'll re-post here when it's done :) |
@HugoDelval No rush at all. Once you are comfortable, add the spec file and update your branch. This PR will be automatically updated with the third file included. If you ever need help, post it at https://community.rapid7.com and will figure out there. |
@HugoDelval @void-in what versions did you guys test this on? I tested it on 3.5.0 and above, and it didn't work for me, so I tried to fix it. I've submitted a patch here to @HugoDelval: HugoDelval#1 |
Marking this PR as delayed, because I think more work is needed. |
@wchen-r7 I think the version I tested on was 3.0. However I am not sure. Will test it again on the mentioned targets. If there isn't any progress on this in the coming days, I will take it. |
We are going to move this to unstable. |
I've moved the module to unstable with this PR: #6194 @HugoDelval feel free to open an new pr at any moment once you are ready to continue. According to the comments the remaining tasks to allow landing it into master are:
Thanks! |
Hi,
sorry if I make a lot of mistakes, that's my first pull request.
I wrote a login scanner for phpMyAdmin (which brute-force the credentials).
That's also my first module in metasploit so if something is wrong, please tell me.
It is working fine as far as I tested.
Have a good day!