wchen-r7
2ecf81cb65
Update payroll_app
2017-04-18 16:00:38 -05:00
wchen-r7
8e2d05d2c8
up to date linux/sql_injection
2017-04-18 15:02:01 -05:00
wchen-r7
a92d7693d2
Update chatbot.zip
2017-04-17 15:52:50 -05:00
James Barnett
8939a3d84f
Add vulnerable service cups.
2017-04-17 14:54:43 -05:00
wchen-r7
b522075693
update chatbot.rb
2017-04-17 13:28:07 -05:00
wchen-r7
fe3cd99781
Add chatbot to Linux VM
2017-04-17 11:45:23 -05:00
James Barnett
7b60422bbf
Enable WebDAV on Apache.
2017-04-13 16:52:10 -05:00
jbarnett-r7
f5786dde31
Merge pull request #94 from pbarry-r7/vbox_ver_check_in_powershell
...
Enhanced VBox version check error msgs for PS.
2017-04-13 16:32:24 -05:00
jbarnett-r7
3002800d20
Merge pull request #123 from rapid7/windows_to_linux_share
...
Mount a share from Linux samba
2017-04-12 14:07:26 -05:00
James Barnett
3183374191
Add poc for sql injection.
2017-04-11 16:12:46 -05:00
jbarnett-r7
280e9e9fdd
Merge pull request #96 from jikuja/PR
...
Fix glassfish
2017-04-11 14:02:19 -05:00
James Barnett
fa021341aa
Add php page vulnerable to sql injection.
2017-04-11 12:53:34 -05:00
James Barnett
9ee6631831
Merge branch 'add_linux_vm' of github.com:rapid7/metasploitable3 into add_linux_vm
2017-04-10 14:33:26 -05:00
James Barnett
a2c943940a
Fix syntax in user config.
2017-04-10 14:33:00 -05:00
wchen-r7
10f3d7b2e1
Land #121 , Add unrealircd Vulnerable Service
2017-04-10 10:00:27 -05:00
wchen-r7
22cc0d944a
Add share from Linux
2017-04-07 14:33:30 -05:00
James Barnett
9d750aa155
Add unrealircd vulnerable service.
2017-04-06 13:19:21 -05:00
jbarnett-r7
3daf5181f3
Merge pull request #111 from rapid7/add_custom_vuln
...
Add Custom Vulnerability (deserialization due to a compromised secret) for Linux VM
2017-04-05 17:27:49 -05:00
James Barnett
759bde200a
Remove unused file.
2017-04-05 17:27:15 -05:00
wchen-r7
d3dd4e00c3
Restore Vagrantfile
2017-04-05 16:03:00 -05:00
wchen-r7
ab5a2ae9d3
Add missing file
2017-04-05 15:59:49 -05:00
wchen-r7
bccc03578b
Update sinatra.rb
2017-04-05 15:58:26 -05:00
wchen-r7
2f2a2f2309
Use upstart script
2017-04-05 15:54:14 -05:00
jbarnett-r7
b4ebd18094
Merge pull request #119 from rapid7/samba
...
Add Samba service to Linux VM
2017-04-04 13:50:26 -05:00
wchen-r7
1e8b607fe1
Add a comment explaining where the passwords are
2017-04-03 17:19:20 -05:00
wchen-r7
ed38a9e2fa
Add Samba with vulnerable share
...
There is a samba share named "public". Cred to access:
chewbacca:rwaaaaawr5
2017-04-03 17:06:40 -05:00
James Barnett
f09ea0d648
Use canonical spelling for user names. Fixes #105
2017-04-03 11:30:58 -05:00
wchen-r7
eef880200f
Merge branch 'add_linux_vm' into add_custom_vuln
2017-04-03 11:19:47 -05:00
James Barnett
50a8a91c71
Revert "Merge branch 'docker_vuln'"
...
This reverts commit 7f77216223
, reversing
changes made to 8b1af132e1
.
2017-04-03 10:43:43 -05:00
wchen-r7
820f265241
Change port
2017-03-31 17:20:04 -05:00
wchen-r7
2642ae3146
fix typo
2017-03-31 17:17:09 -05:00
wchen-r7
1b21911005
Add Sinatra Leaked Secret Deserialization Vulnerability
2017-03-31 17:15:04 -05:00
James Barnett
7f77216223
Merge branch 'docker_vuln'
2017-03-30 15:27:41 -05:00
James Barnett
9f20618e2a
Add docker and compat_resource cookbooks.
2017-03-30 15:26:04 -05:00
Sliim
dbe3947d22
linux: add docker_daemon_privilege_escalation
...
Install docker from the community cookbook and add some users in the
docker group from attributes.
I created the `attributes/default.rb` attribute file to configure which
users are added in the `docker` group. I suggest to put all configurable
values here, such as users, passwords etc..
2017-03-25 12:41:46 +01:00
James Barnett
5d36ad0306
Fix typo in proftpd recipe header
2017-03-24 15:31:47 -05:00
James Barnett
6549e398bc
Add new vuln for proftpd mod_copy
2017-03-23 13:06:48 -05:00
James Barnett
3566e9f009
Add php 5.4.5 and phpmyadmin 3.5.8
2017-03-21 13:50:39 -05:00
jbarnett-r7
8b1af132e1
Merge pull request #93 from a-garcia/Update_Elasticsearch's_initial_startup_time
...
Updated the initial startup time for Elasticsearch Fixes #73
2017-03-17 15:11:20 -05:00
James Barnett
8ae68cb895
Remove unused file.
2017-03-13 17:35:51 -05:00
James Barnett
4d6c47efda
Add shellshock vulnerability exploitable through Apache mod_cgi.
2017-03-13 17:34:45 -05:00
James Barnett
ffed818290
Do an apt-get update before installing mysql.
2017-03-13 17:33:17 -05:00
Janne Kujanpää
1245a782bb
Fix glassfish
...
This fix was in #65 but was removed from PR for some reason
2017-03-07 19:10:02 +02:00
James Barnett
1066317922
Update URL for WAMP download. Fixes #91
2017-03-06 17:05:28 -06:00
Pearce Barry
b2c9443a5c
Land #61 , Print current vbox version if less than minimum version
2017-03-06 08:56:16 -06:00
Pearce Barry
8dda67eff1
Enhanced VBox version check error msgs for PS.
2017-03-06 08:28:04 -06:00
Arturo Garcia
448dbb007c
Updated the initial startup time for Elasticsearch from 5 seconds to 30 seconds.
2017-03-05 08:45:08 -06:00
James Barnett
0c6a9063e8
Add recipe for vulnerable Apache Continuum
2017-02-17 16:25:13 -06:00
James Barnett
c3bf91c693
WIP: Adding Linux VM using chef solo provisioning
2017-02-13 15:53:51 -06:00
Nicholas Charron
a076214362
Merged with upstream
2017-01-25 09:47:09 -05:00