automatic module_metadata_base.json update

jenkins-metasploit · jenkins-metasploit · commit c5e737a0a110 · 2026-05-15T14:27:17.000Z
diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
@@ -294582,6 +294582,47 @@
     "needs_cleanup": null,
     "actions": []
   },
+  "post_linux/gather/tenable_security_center": {
+    "name": "Tenable Security Center",
+    "fullname": "post/linux/gather/tenable_security_center",
+    "aliases": [],
+    "rank": 300,
+    "disclosure_date": null,
+    "type": "post",
+    "author": [
+      "h00die"
+    ],
+    "description": "This module collects credentials and setup information\n          from Tenable Security Center. root or TNS user permissions\n          are required. We don't utilize SC's builtin backup\n          functionality as that requires SC to be shut down.\n          The module works in 2 phases:\n\n          Phase 1: gather all passwords which can be decrypted. These\n          are non-user ones such as credentials used for scans, creds\n          for the Nessus servers, SMTP, etc.\n\n          Phase 2: handle hashed passwords processing. SC uses SHA-512\n          and PBKDF2 according to the documentation, but the implementation\n          (salt+hash vs hash+salt) is unknown due to the source code being\n          protected by SourceGuardian. To get around this, we use a php\n          script on server to brute force the passwords. Note this will\n          use SC's resources. The crack attempt rate is ~6/sec on a test\n          instance, so you'll want a small password list.\n\n          Tested against SC 6.7.2 on RHEL9",
+    "references": [
+      "URL-https://docs.tenable.com/security-center/Content/EncryptionStrength.htm"
+    ],
+    "platform": "Linux",
+    "arch": "",
+    "rport": null,
+    "autofilter_ports": null,
+    "autofilter_services": null,
+    "targets": null,
+    "mod_time": "2026-05-08 07:30:25 +0000",
+    "path": "/modules/post/linux/gather/tenable_security_center.rb",
+    "is_install_path": true,
+    "ref_name": "linux/gather/tenable_security_center",
+    "check": false,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [],
+      "Reliability": []
+    },
+    "session_types": [
+      "shell",
+      "meterpreter"
+    ],
+    "needs_cleanup": null,
+    "actions": []
+  },
   "post_linux/gather/tor_hiddenservices": {
     "name": "Linux Gather TOR Hidden Services",
     "fullname": "post/linux/gather/tor_hiddenservices",
