2 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
Metasploit's first modules targeting Kubernetes, plus Windows support for exploiting Confluence Server CVE-2021-26084.
Read Full Post
2 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
Four new Moodle modules, plus new features to help red teamers keep track of sessions and forwarded connections.
Read Full Post
2 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
New modules for vCenter Server and Linux Netfilter, plus fixes and enhancements.
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
More post modules than we've ever put out in a single release before, courtesy of a university project to add credential gathering capabilities based on the PackRat toolset.
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
A new evasion module, an exploit for ManageEngine OpManager, fully functional shells over WinRM, and major RDP library improvements.
Read Full Post
3 min
Metasploit
Easier URI Targeting With Metasploit Framework
Streamline your Metasploit with Metasploit 6.1.4's new support for RHOST URI values
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
New modules for Jira user enumeration, Git Remote Code execution via git-lfs, Geutebruck Camera post exploitation module, and unauthenticated RCE in elFinder PHP application
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
Confluence Server OGNL Injection
Our own wvu [https://github.com/wvu-r7] along with Jang
[https://twitter.com/testanull] added a module that exploits an OGNL injection (
CVE-2021-26804
[https://attackerkb.com/topics/Eu74wdMbEL/cve-2021-26084-confluence-server-ognl-injection]
)in Atlassian Confluence's WebWork component to execute commands as the Tomcat
user. CVE-2021-26804 is a critical remote code execution vulnerability in
Confluence Server and Confluence Data Center and is actively being expl
Read Full Post
5 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
A new SMB server implementation to support capturing NTLM hashes across SMBv2 and SMBv3, even with encrypted SMB traffic. Plus, exploits for eBPF, Git LFS, and Geutebruck IP cameras.
Read Full Post
2 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
LearnPress authenticated SQL injection
Metasploit contributor h00die [https://github.com/h00die] added a new module
that exploits CVE-2020-6010
[https://attackerkb.com/topics/x12K9JOfk2/cve-2020-6010?referrer=blog], an
authenticated SQL injection vulnerability in the WordPress LearnPress plugin.
When a user is logged in with contributor privileges or higher, the id parameter
can be used to inject arbitrary code through an SQL query. This exploit can be
used to collect usernames and password hash
Read Full Post
2 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
New modules for Lucee Administrator and ProxyShell, which targets on-premises Microsoft Exchange servers. Plus, tons of enhancements and fixes!
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
Three new modules that deliver RCE on Atlassian Crowd and privilege escalation to SYSTEM via print drivers. Plus, a new command shell session type for SSH clients and plenty more enhancements and fixes.
Read Full Post
2 min
Metasploit
Metasploit Wrap-Up
Desert heat (not the 1999 film)
This week was more quiet than normal with Black Hat USA and DEF CON, but that
didn’t stop the team from delivering some small enhancements and bug fixes! We
are also excited to see two new modules #15519
[https://github.com/rapid7/metasploit-framework/pull/15519] and #15520
[https://github.com/rapid7/metasploit-framework/pull/15520] from researcher
Jacob Baines’ [https://twitter.com/Junior_Baines] DEF CON talk Bring Your Own
Print Driver Vulnerability [https://
Read Full Post
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up
Five new modules, including an exploit for "HiveNightmare" CVE-2021-36934, and new fixes and enhancements.
Read Full Post
4 min
Metasploit
Metasploit Wrap-Up
Now I Control Your Resource Planning Servers
Sage X3 is a resource planning product designed by Sage Group which is designed
to help established businesses plan out their business operations. But what if
you wanted to do more than just manage resources? What if you wanted to hijack
the resource server itself? Well wait no more, as thanks to the work of Aaron
Herndon [https://www.linkedin.com/in/aaron-herndon-54079b5a/], Jonathan Peterson
[https://www.linkedin.com/in/jonathan-p-004b76a1/], Will
Read Full Post