Posts tagged Metasploit Weekly Wrapup

2 min Metasploit

Metasploit Wrap-Up: Feb. 5, 2021

This week's edition: Baron Samedit 'sudo' exploit module, OneDrive sync enumeration, and WP credential gathering via Abandoned Cart plugin.
3 min Metasploit

Metasploit Wrap-Up: 1/29/21

Five new modules, including RCEs, arbitrary file write, and a Windows Registry check if the DementiaWheel/fanny.bmp malware exists on a target.
3 min Metasploit

Metasploit Wrap-Up: 1/22/21

A new Microsoft Windows Spooler privesc module, along with some fixes and improvements!
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 1/15/21

Commemorating the 2020 December Metasploit community CTF A new commemorative banner has been added to the Metasploit console to celebrate the teams that participated in the 2020 December Metasploit community CTF [/2020/12/07/congrats-to-the-winners-of-the-2020-december-metasploit-community-ctf/] and achieved 100 or more points: If you missed out on participating in this most recent event, be sure to follow the Metasploit Twitter [https://twitter.com/metasploit] and Metasploit blog posts [/ta
3 min Metasploit

Metasploit Wrap-Up: 1/8/21

Eight new Metasploit modules for various targets (and outcomes!), with a good set of improvements and fixes!
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 12/18/20

Exploits for Oracle Solaris CVE-2020-14871 and Windows 7 CVE-2020-1054, plus enhancements and bug fixes for Railgun and msfdb init. Happy HaXmas!
3 min Metasploit

Metasploit Wrap-Up: 12/11/20

This week's wrap-up covers five new modules (including scanner, execution, and disclosure modules), some good fixes and enhancements, and more!
2 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 12/4/20

It's CTF week(end)! Plus, steal files from Apache Tomcat servers thanks to a new Ghostcat exploit, and dump process memory with a new post module that leverages Avast AV's built-in AvDump utility.
3 min Metasploit

Metasploit Wrap-Up 11/27/20

Five new modules, and a reminder for the upcoming CTF
3 min Metasploit

Metasploit Wrap-Up: 11/20/20

Two new RCE-capable modules and some good fixes and enhancements!
2 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 11/13/20

Four new modules, including an exploit for SaltStack Salt and an exploit for a now-patched vuln in Metasploit, plus new enhancements and fixes.
2 min Metasploit

Metasploit Wrap-Up: Nov. 6, 2020

Insert 'What Year Is It' meme h00die [https://github.com/h00die] contributed the Mikrotik unauthenticated directory traversal file read [https://github.com/rapid7/metasploit-framework/pull/14280] auxiliary gather module, largely a port of the PoC by Ali Mosajjal [https://github.com/mosajjal]. The vulnerability CVE-2018-14847 [https://attackerkb.com/topics/oOoUGd0y46/cve-2018-14847?referrer=blog] allows any file from the router to be read through the Winbox server in RouterOS due to a lack of val
2 min Metasploit Weekly Wrapup

Metasploit Wrap-Up 10/30/20

Support for gathering ProxyUsername and ProxyPassword for saved PuTTY sessions, usability improvements for PsExec modules, and another CTF coming soon.
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 10/23/20

A bug fix for EternalBlue on Metasploit 6, four new modules, and a bunch of enhancements.
2 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 10/16/20

Hacktoberfest 2020 and wisdom from around the Metasploit water cooler. Keep an eye out for more info on the next Metasploit community CTF (coming soon).

Popular Topics

Tags