Matthew Mathur

I took a look into this. It looks like the error is being caused when payloads reload and hit this line: https://github.com/rapid7/metasploit-framework/blob/fedcdc386b1bf06c7fd46d1f196c2c926630d8a7/lib/msf/core/module_manager/reloading.rb#L24 I did some debugging to find this in...

FWIW the lint failure appears to be unrelated, the error is about a file read issue and it can't be rerun

Thanks @gwillcox-r7 ! Normally I can rerun failed checks, but maybe I couldn't this time because it's a PR based check and not a normal branch one 🤷‍♂️ Appreciate the...

@gwillcox-r7 I addressed all of the PR comments except for testing prior NagiosXI versions. I'll do that today but wanted to push the rest up in the meantime. If older...

Thanks @gwillcox-r7 . Turns out it's actually vulnerable from 5.5.6 to 5.7.5. Before 5.5.8, the ip_address parameter is named address, so I had to re-work some of the check to...

@gwillcox-r7 I addressed all the requested changes I think. I tested the module again as well after all the changes. The documentation should be more thorough on the installs, and...

> Alright I think this should be ready for testing, just going over the 4 commits you made to see if there is anything I might have missed, and then...

> Tried this against a target with most things up but license wasn't signed and got this: > > ``` > msf6 exploit(linux/http/nagios_xi_configwizards_authenticated_rce) > exploit > > [*] Started reverse...

> > > Tried this against a target with most things up but license wasn't signed and got this: > > > ``` > > > msf6 exploit(linux/http/nagios_xi_configwizards_authenticated_rce) > exploit...

> Alright seems this is all working now. Only question I have is a minor one r.e why it seems that it fails to extract authentication cookies on the first...