Christopher Granleese – Noise

Metasploit Wrap-Up 02/13/2026

Christopher Granleese — Fri, 13 Feb 2026 20:01:55 +0000

SolarWinds Web Help DeskOur very own sfewer-r7 has developed an exploit module for the SolarWinds Web Help Desk vulnerabilities CVE-2025-40536 and CVE-2025-40551. On successful exploitation the session will be as running as NT AUTHORITY\SYSTEM. For mor...

Metasploit Wrap-Up 02/06/2026

Christopher Granleese — Fri, 06 Feb 2026 18:52:32 +0000

Google Summer of Code 2026Our very own Jack Heysel has added some documentation which outlines the Metasploit Framework project ideas for GSoC 2026. For anyone interested in applying please see GSoC-How-To-Apply documentation, or reach out on slack to ...

Metasploit Weekly Wrap-Up 02/14/2025

Christopher Granleese — Fri, 14 Feb 2025 20:20:46 +0000

New module content (2)

Unauthenticated RCE in NetAlertX

Authors: Chebuya (Rhino Security Labs) and Takahiro Yokoyama
Type: Exploit
Pull request: #19868 contributed by Takahiro-Yoko
Path: linux/http/netalertx_rce_cve_2024_46506
AttackerKB reference: CVE-2024-46506

Description: A new module for an unauthenticated remote code execution bug in NetAlertX (CVE-2024-46506). An

Metasploit Weekly Wrap-up 11/29/2024

Christopher Granleese — Fri, 29 Nov 2024 18:15:01 +0000

Four new Metasploit modules released, including CUPS IPP Attributes LAN Remote Code Execution CVE-2024-47176

Metasploit Weekly Wrap-Up 09/20/2024

Christopher Granleese — Fri, 20 Sep 2024 18:31:40 +0000

New module content (3)

update-motd.d Persistence

Author: Julien Voisin
Type: Exploit
Pull request: #19454 contributed by jvoisin
Path: linux/local/motd_persistence

Description: This adds a post module to keep persistence on a Linux target by writing a motd bash script triggered with root privileges every time a user

Metasploit Weekly Wrap-Up 08/16/2024

Christopher Granleese — Fri, 16 Aug 2024 18:33:17 +0000

This weeks Metasploit Weekly Wrap-Up included 3 new module contents. Learn more about the modules and update to the latest Metasploit Framework.

Metasploit Wrap-Up 05/10/2024

Christopher Granleese — Fri, 10 May 2024 20:12:01 +0000

Password Spraying support

Multiple bruteforce/login scanner modules have been updated to support a PASSWORD_SPRAY module option. This work was completed in pull request #19079 from nrathaus as well as an additional update from our developers . When the password spraying option is set, the order of attempted users and

Metasploit Weekly Wrap-Up 01/12/24

Christopher Granleese — Fri, 12 Jan 2024 21:25:19 +0000

New module content (1)

Windows Gather Mikrotik Winbox "Keep Password" Credentials Extractor

Author: Pasquale 'sid' Fiorillo
Type: Post
Pull request: #18604 contributed by siddolo
Path: windows/gather/credentials/winbox_settings

Description: This pull request introduces a new post module to extract the Mikrotik Winbox credentials, which are saved

Metasploit Wrap-up

Christopher Granleese — Thu, 23 Nov 2023 16:24:47 +0000

Metasploit 6.3.44 released with stability improvements and module fixes

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 27 Oct 2023 18:46:55 +0000

New module content (4)

Atlassian Confluence Data Center and Server Authentication Bypass via Broken Access Control

Authors: Emir Polat and Unknown
Type: Auxiliary
Pull request: #18447 contributed by emirpolatt
Path: admin/http/atlassian_confluence_auth_bypass
AttackerKB reference: CVE-2023-22515

Description: This adds an exploit for CVE-2023-22515, which is an authentication

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 08 Sep 2023 18:03:17 +0000

New module content (4)

Roundcube TimeZone Authenticated File Disclosure

Authors: joel, stonepresto, and thomascube
Type: Auxiliary
Pull request: #18286 contributed by cudalac
Path: auxiliary/gather/roundcube_auth_file_read
AttackerKB reference: CVE-2017-16651

Description: This PR adds a module to retrieve an arbitrary file on hosts running Roundcube versions from 1.

Metasploit weekly wrap-up

Christopher Granleese — Fri, 11 Aug 2023 15:22:20 +0000

A new Metabase RCE module, updates to the citrix_formssso_target_rce module for CVE-2023-3519 to include two new targets, Citrix ADC (NetScaler) 12.1-65.25, and 12.1-64.17, and more

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 02 Jun 2023 16:20:56 +0000

Support added for Active Directory Certificate Services ESC4 Exploitation, and a new sudoedit extra arguments privilege escalation module

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 13 Jan 2023 17:50:56 +0000

New module content (2)

Gather Dbeaver Passwords

Author: Kali-Team
Type: Post
Pull request: #17337 contributed by cn-kali-team

Description: This adds a post exploit module that retrieves Dbeaver session data from local configuration files. It is able to extract and decrypt credentials stored in these files for any version of Dbeaver

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 25 Nov 2022 17:14:15 +0000

2 new modules targeting F5 devices, DuckyScript support, bug fixes, and more

Metasploit Weekly Wrap-Up

Christopher Granleese — Fri, 02 Sep 2022 19:39:21 +0000

ICPR Certificate Management

This week Metasploit has a new ICPR Certificate Management module from Oliver Lyak and our very own Spencer McIntyre, which can be utilized for issuing certificates via Active Directory Certificate Services. It has the capability to issue certificates which is useful in a few contexts including persistence,

Metasploit Wrap-up

Christopher Granleese — Fri, 09 Jul 2021 17:53:41 +0000

A new module for CVE-2021-34527, dubbed PrintNightmare, and a local privilege escalation module for NSClient++