Minor grammar fixes on modules

Author: Tod Beardsley

modules/auxiliary/admin/kerberos/ms14_068_kerberos_checksum.rb

@@ -17,7 +17,7 @@ def initialize(info = {})
       'Description' => %q{
         This module exploits a vulnerability in the Microsoft Kerberos implementation. The problem
         exists in the verification of the Privilege Attribute Certificate (PAC) from a Kerberos TGS
-        request, where a domain user is allowed to forge a PAC with arbitrary privileges, including
+        request, where a domain user may forge a PAC with arbitrary privileges, including
         Domain Administrator. This module requests a TGT ticket with a forged PAC and exports it to
         a MIT Kerberos Credential Cache file. It can be loaded on Windows systems with the Mimikatz
         help. It has been tested successfully on Windows 2008.

modules/auxiliary/gather/android_browser_new_tab_cookie_theft.rb

@@ -16,7 +16,7 @@ def initialize(info={})
     super(update_info(info,
       'Name'        => 'Android Browser "Open in New Tab" Cookie Theft',
       'Description' => %q{
-        In Android (AOSP)'s Browser application and WebView component the
+        In Android's stock AOSP Browser application and WebView component, the
         "open in new tab" functionality allows a file URL to be opened. On
         versions of Android before 4.4, the path to the sqlite cookie
         database could be specified. By saving a cookie containing a <script>

modules/exploits/linux/local/desktop_privilege_escalation.rb

@@ -21,15 +21,15 @@ def initialize(info={})
         This module steals the user password of an administrative user on a desktop Linux system
         when it is entered for unlocking the screen or for doing administrative actions using
         policykit. Then it escalates to root privileges using sudo and the stolen user password.
-        It exploits the design weakness that there is no trusted channell for transferring the
+        It exploits the design weakness that there is no trusted channel for transferring the
         password from the keyboard to the actual password verificatition against the shadow file
         (which is running as root since /etc/shadow is only readable to the root user). Both
         screensavers (xscreensaver/gnome-screensaver) and policykit use a component running under
         the current user account to query for the password and then pass it to a setuid-root binary
-        to do the password verification. Therefore it is possible to inject a password stealer
+        to do the password verification. Therefore, it is possible to inject a password stealer
         after compromising the user account. Since sudo requires only the user password (and not
         the root password of the system), stealing the user password of an administrative user
-        directly allows escalating to root privileges. Please note that you have to start a handler
+        directly allows escalating to root privileges. Please note, you have to start a handler
         as a background job before running this exploit since the exploit will only create a shell
         when the user actually enters the password (which may be hours after launching the exploit).
         Using exploit/multi/handler with the option ExitOnSession set to false should do the job.

modules/post/windows/recon/outbound_ports.rb

@@ -18,7 +18,7 @@ def initialize(info={})
         This module makes some kind of TCP traceroute to get outbound-filtering rules.
         It will try to make a TCP connection to a certain public IP address (this IP
         does not need to be under your control) using different TTL incremental values.
-        This way if you get an answer (ICMP ttl time exceeded packet) from a public IP
+        This way if you get an answer (ICMP TTL time exceeded packet) from a public IP
         device you can infer that the destination port is allowed. Setting STOP to
         true the module will stop as soon as you reach a public IP (this will generate
         less noise in the network).