Notice
This release is a unique patch version for a security vulnerability in the spider_plus module. All users should upgrade to this version ASAP by installing from GitHub via pipx. We are working on releasing this version to Kali natively. A huge thank you to @RaynLight on reporting this professionally and responsibly - we love our community!
What's Changed
- Fix for arbitrary file write via spider_plus module by @Marshall-Hallenbeck in #1121
- Fix binaries by @NeffIsBack in #1050
- Rename windows binary by @NeffIsBack in #1051
- Allow changing password for locked pre2k accounts by @NeffIsBack in #1056
- Fix Not Listing All User on Groups by @termanix in #1055
- Fix ls arg in nfs by @NeffIsBack in #1057
- [ShadowCopy] Add
list-snapshotsfunction for SMB & WMI by @XiaoliChan in #1053 - Fixes #1068 - FTP module --ls flag now displays hidden files (dotfiles) by @strikoder in #1069
- Add database fix commands for Windows by @Signum21 in #1070
- Fix inconsistent LDAP attribute name in module get-userPassword.py by @Barneee in #1090
- Properly handle shell metacharacters in command output for wmi by @Adamkadaban in #1094
- Minor RDP enhancement by @Mauriceter in #1066
- Refactor is_host_dc call based on file generation flags by @mpgn in #1097
- Fix NFS get_file and put_file auth during path traversal by @0xdf223 in #1103
- Add issue template config and PR template check workflow by @Marshall-Hallenbeck in #1105
- Add AI policy by @NeffIsBack in #1109
- fix(snipped): properly parse and set output file for saved screenshots by @Marshall-Hallenbeck in #1122
New Contributors
- @strikoder made their first contribution in #1069
- @Signum21 made their first contribution in #1070
- @Barneee made their first contribution in #1090
- @0xdf223 made their first contribution in #1103
Full Changelog: v1.5.0...v1.5.1