metasploit-framework

https://github.com/rapid7/metasploit-framework

Ruby

Metasploit Framework

Msf::Exploit::Remote::BrowserAutopwn2#get_suitable_exploits

Returns a list of suitable exploits for the current client based on what #sort_bap_exploits
gives us. It will do a global exploitable requirement check (the best it can do). There's
actually a target-specific exploitable requirement check too, but that is performed in
BrowserExploitServer while the exploit is being served. In other words, it is possible
#get_suitable_exploits might not be 100% accurate (but pretty good, it depends on how the
exploit dev accurately defines his/her global requirements), but the exploit always has a
choice to bail at the last second if it decides it is actually not suitable for the client.
That way we don't risk being too wreckless with our attack.

Source | Google | Stack overflow

Edit

git clone [email protected]:rapid7/metasploit-framework.git

cd metasploit-framework

open lib/msf/core/exploit/browser_autopwn2.rb

Contribute

# Make a new branch

git checkout -b -your-name--update-docs-Msf--Exploit--Remote--BrowserAutopwn2-get_suitable_exploits-for-pr


# Commit to git

git add lib/msf/core/exploit/browser_autopwn2.rbgit commit -m "better docs for Msf::Exploit::Remote::BrowserAutopwn2#get_suitable_exploits"


# Open pull request

gem install hub # on a mac you can `brew install hub`

hub fork

git push <your name> -your-name--update-docs-Msf--Exploit--Remote--BrowserAutopwn2-get_suitable_exploits-for-pr

hub pull-request


# Celebrate!