Posts tagged Metasploit

3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: July 16, 2021

Four new modules, with improvements to Eternal Blue support, and AmSi 0BfuSc@t!on for Powershell payloads
2 min Metasploit

Metasploit Wrap-Up: Jul. 9, 2021

A new module for CVE-2021-34527, dubbed PrintNightmare, and a local privilege escalation module for NSClient++
2 min Metasploit

Metasploit Wrap-Up: 7/2/21

Containers that fail to Contain Our own Christophe De La Fuente added a module for CVE-2019-5736 based on the work of Adam Iwaniuk that breaks out of a Docker container by overwriting the runc binary of an image which is run in the user context whenever someone outside the container runs docker exec to make a request of the container. Execute an Image Please, Wordpress Community contributor Alexandre Zanni sent us a PR that uses native PHP functions to upload a file as an image attachment to Wo
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: Jun. 25, 2021

Three fresh modules for Cisco targets and rConfig, plus new enhancements and fixes.
3 min Metasploit

Metasploit Wrap-Up: 6/18/21

New Emby version scanner, IPFire authenticated RCE, HashiCorp Nomad RCE, Microsoft SharePoint unsafe control and ViewState RCE.
3 min Metasploit

Metasploit Wrap-Up: 6/11/21

NSClient++ Community contributor Yann Castel has contributed an exploit module for NSClient++ which targets an authenticated command execution vulnerability. Users that are able to authenticate to the service as admin can leverage the external scripts feature to execute commands with SYSTEM level privileges. This allows the underlying server to be compromised. Castel is also working on another exploit module for NSClient++ which happens to be a local privilege escalation so stay tuned for more N
2 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 6/4/21

Two new modules and a few enhancements and fixes, including improvements to the analyze command.
3 min Metasploit

Metasploit Wrap-Up: May 28, 2021

In the spirit of cool module content, there's a new SMBGhost RCE module, plus a hefty set of enhancements and fixes!
3 min Metasploit

Metasploit Wrap-Up: 5/21/21

New modules for gathering (info+config!), escalation (of privilege!), and execution (of code!).
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: May 14, 2021

Updates to how modules interact with cookies, plus exploits for macOS Gatekeeper and DjVu ANT and a whole lot of fixes and enhancements.
3 min Metasploit

Metasploit Wrap-Up: 5/7/21

New modules that include Active Directory, Chrome, and Micro Focus targets. And we also reached-and-passed our 15,000th PR!!
3 min Metasploit

Metasploit Wrap-Up: 4/30/21

New modules for vRealize, Druid, Redis, and more! Also some nice improvements and fixes.
3 min Metasploit Weekly Wrapup

Metasploit Wrap-Up: 4/23/21

New session validation enhancements across command shell types verify sessions have been established and are responsive before they can be used. Plus, JSON RPC service improvements, three new modules, and more fixes and enhancements.
3 min Open Source

Rapid7 and Velociraptor Join Forces

Rapid7 has acquired a digital forensics and incident response (DFIR) framework called Velociraptor.

5 min Metasploit

Metasploit Wrap-Up: Apr. 16, 2021

New modules for Nagios, Chrome, and Haserl targets, and also many improvements and fixes!

Popular Topics

Tags