Simon Janusz – Noise

Metasploit Wrap-Up 01/16/2025

Simon Janusz — Fri, 16 Jan 2026 18:49:01 +0000

Persistence, dMSA Abuse & RCE GoodiesThis week, we have received a lot of contributions from the community, such as h00die, Chocapikk and countless others, which is greatly appreciated. This week’s modules and improvements in Metasploit Framework range...

Metasploit Wrap-Up 11/28/2025

Simon Janusz — Fri, 28 Nov 2025 18:49:35 +0000

This week, we have added 10 new modules to Metasploit Framework including an SMB to MSSQL relay module, a remote code execution module targeting Fortinet software, additional 32-bit and 64-bit RISC-V payloads, and more.The SMB to MSSQL NTLM relay modul...

Metasploit Wrap-Up 03/21/2025

Simon Janusz — Fri, 21 Mar 2025 19:06:21 +0000

SMB to LDAP Relay

This week, the Metasploit team have added an exciting relay module that has been in the works for a long time. This relay module is used to host an SMB server, and execute an SMB to LDAP relay attack against a Domain controller with an LDAP

Metasploit Wrap-Up 11/08/2024

Simon Janusz — Fri, 08 Nov 2024 19:26:09 +0000

RISC-V Support

This release of Metasploit Framework has added exciting new features such as new payloads that target the RISC-V architecture. These payloads allow for the execution of commands on compromised hardware, allowing Metasploit Framework and Metasploit Payloads to be used in more environments.

SMB To HTTP(S) Relay

This

Metasploit Weekly Wrap-Up 08/30/2024

Simon Janusz — Fri, 30 Aug 2024 18:43:05 +0000

A New Way to Encode PHP Payloads

A new PHP encoder has been released by a community contributor, jvoisin, allowing a PHP payload to be encoded as an ASCII-Hex string. This can then be decoded on the receiver to prevent issues with unescaped or bad characters.

Ray Vulnerabilities

This release

Metasploit Weekly Wrap-Up 06/21/2024

Simon Janusz — Fri, 21 Jun 2024 18:53:52 +0000

Argument Injection for PHP on Windows

This week includes modules that target file traversal and arbitrary file read vulnerabilities for software such as Apache, SolarWinds and Check Point, with the highlight being a module for the recent PHP vulnerability submitted by sfewer-r7. This module exploits an argument injection vulnerability, resulting

Metasploit Weekly Wrap-Up 04/12/24

Simon Janusz — Fri, 12 Apr 2024 17:47:11 +0000

Account Takeover using Shadow Credentials

The new release of Metasploit Framework includes a Shadow Credentials module added by smashery used for reliably taking over an Active Directory user account or computer, and letting future authentication to happen as that account. This can be chained with other modules present in Metasploit

Metasploit Weekly Wrap-Up 02/02/2024

Simon Janusz — Fri, 02 Feb 2024 20:14:34 +0000

Shared RubySMB Service Improvements

This week’s updates include improvements to Metasploit Framework’s SMB server implementation: the SMB server can now be reused across various SMB modules, which are now able to register their own unique shares and files. SMB modules can also now be executed concurrently. Currently, there

Metasploit Wrap-Up

Simon Janusz — Fri, 08 Apr 2022 17:50:10 +0000

Five new modules targeting Windows, Linux, macOS, and more. Plus, updates to the Log4Shell scanner and a new Windows Meterpreter option to enable additional logging visible in DbgView

Metasploit Weekly Wrap-Up

Simon Janusz — Fri, 14 Jan 2022 19:00:29 +0000

Five new modules, including exploits for Log4Shell and SonicWall SMA 100 series devices, plus a new Meterpreter command that allows users to kill all channels at once.

Metasploit Wrap-Up

Simon Janusz — Fri, 08 Oct 2021 16:57:33 +0000

New modules for vCenter Server and Linux Netfilter, plus fixes and enhancements.