Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kitploitKitPloitKITPLOIT:5494076556436489947
HistoryApr 04, 2019 - 9:12 p.m.

Darksplitz - Exploit Framework

2019-04-0421:12:00
www.kitploit.com
1116

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.976 High

EPSS

Percentile

100.0%

JSON

This tools is continued from Nefix, DirsPy and Xmasspy project.

Installation
Will work fine in the debian shade operating system, like Backbox, Ubuntu or Kali linux.

  1. $ git clone https://github.com/koboi137/darksplitz
  2. $ cd darksplitz/
  3. $ sudo ./install.sh

Features

  • Extract mikrotik credential (user.dat)
  • Password generator
  • Reverse IP lookup
  • Mac address sniffer
  • Online md5 cracker
  • Mac address lookup
  • Collecting url from web.archive.org
  • Web backdoor (Dark Shell)
  • Winbox exploit (CVE-2018-14847)
  • ChimeyRed exploit for mipsbe (Mikrotik)
  • Exploit web application
  • Mass apple dos (CVE-2018-4407)
  • Libssh exploit (CVE-2018-10933)
  • Discovering Mikrotik device
  • Directory scanner
  • Subdomain scanner
  • Mac address scanner
  • Mac address pinger
  • Vhost scanner (bypass cloudflare)
  • Mass bruteforce (wordpress)
  • Interactive msfrpc client

Exploit web application

  • plUpload file upload
  • jQuery file upload (CVE-2018-9206)
  • Laravel (.env)
  • sftp-config.json (misc)
  • Wordpress register (enable)
  • elfinder file upload
  • Drupal 7 exploit (CVE-2018-7600)
  • Drupal 8 exploit (CVE-2018-7600)
  • com_fabrik exploit (joomla)
  • gravityform plugin file upload (wordpress)
  • geoplace3 plugin file upload (wordpress)
  • peugeot-music plugin file upload (wordpress)

Notes
This tool will work fine under root, because scapy module and other need root user to access more features. But you can run as user too in some features. ;)

Download Darksplitz

Related

packetstorm 10
github 2
checkpoint_advisories 5
prion 5
wpexploit 2
dsquare 3
zdt 8
veracode 2
metasploit 3
kitploit 2
wpvulndb 2
nessus 25
threatpost 10
patchstack 1
exploitpack 7
ubuntucve 3
osv 9
canvas 1
openvas 22
debiancve 3
cve 5
attackerkb 3
thn 8
impervablog 4
hackread 1
cisa_kev 2
talosblog 1
mmpc 1
mssecure 1
exploitdb 2
malwarebytes 1
redhatcve 1
alpinelinux 2
altlinux 5
suse 2
fedora 3
saint 6
cisco 1
ics 2
debian 6
freebsd 2
ibm 1
fortinet 1
archlinux 2
f5 2
qualysblog 1
hackerone 1
slackware 1
ubuntu 2
mageia 1
wallarmlab 1
seebug 1
nuclei 1
packetstorm
packetstorm
Blueimp jQuery File Upload 9.22.0 Arbitrary File Upload
2019-01-17 00:00:00
blueimp jQuery Arbitrary File Upload
2018-11-05 00:00:00
Mikrotik WinBox 6.42 Credential Disclosure
2018-08-17 00:00:00
github
github
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload
2018-10-22 18:53:56
Drupal Core Remote Code Execution Vulnerability
2022-05-14 01:29:45
checkpoint_advisories
checkpoint_advisories
Blueimp jQuery File Upload Remote Code Execution (CVE-2018-9206)
2018-11-01 00:00:00
MikroTik RouterOS Winbox Authentication Bypass (CVE-2018-14847)
2018-08-06 00:00:00
libssh SSH2_MSG_USERAUTH_SUCCESS Authentication Bypass (CVE-2018-10933)
2018-10-28 00:00:00
prion
prion
Design/Logic Flaw
2018-10-11 15:29:00
Directory traversal
2018-08-02 07:29:00
Authentication flaw
2018-10-17 12:29:00
wpexploit
wpexploit
Tajer - Unauthenticated Arbitrary File Upload
2018-10-15 00:00:00
Art-Picture-Gallery <= 1.2.9 - Unauthenticated Arbitrary File Upload
2020-04-02 00:00:00
dsquare
dsquare
jQuery File Upload
2018-10-18 00:00:00
Drupal 8 SA-CORE-2018-002 RCE
2018-05-08 00:00:00
Drupal 7 SA-CORE-2018-002 RCE
2018-05-08 00:00:00
zdt
zdt
blueimp jQuery Arbitrary File Upload Exploit
2018-11-05 00:00:00
XNU Kernel iOS / macOS heap buffer overflow Exploit
2018-11-06 00:00:00
MicroTik RouterOS < 6.43rc3 - Remote Root Exploit
2018-10-10 00:00:00
veracode
veracode
Arbitrary File Upload
2018-10-12 02:43:31
Remote Code Execution (RCE)
2018-04-03 05:03:22
metasploit
metasploit
blueimp's jQuery (Arbitrary) File Upload
2018-10-23 04:35:42
libssh Authentication Bypass Scanner
2018-10-19 04:03:23
Drupal Drupalgeddon 2 Forms API Property Injection
2018-04-18 00:05:45
kitploit
kitploit
JQShell - A Weaponized Version Of CVE-2018-9206 (Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0)
2018-10-29 20:39:00
LibSSH Scanner - Script To Identify Hosts Vulnerable To CVE-2018-10933
2018-10-19 12:51:00
wpvulndb
wpvulndb
Art-Picture-Gallery <= 1.2.9 - Unauthenticated Arbitrary File Upload
2020-04-02 00:00:00
Tajer - Unauthenticated Arbitrary File Upload
2018-10-15 00:00:00
nessus
nessus
jQuery-File-Upload Arbitrary File Upload Vulnerability (Remote Check)
2018-10-22 00:00:00
MikroTik RouterOS Path Traversal (CVE-2018-14847)
2024-02-27 00:00:00
MikroTik RouterOS Winbox Unauthenticated Arbitrary File Read/Write Vulnerability
2018-09-06 00:00:00
threatpost
threatpost
Thousands of Applications Vulnerable to RCE via jQuery File Upload
2018-10-23 12:31:06
Yandex Pummeled by Potent Meris DDoS Botnet
2021-09-10 16:31:14
New Drupalgeddon Attacks Enlist Shellbot to Open Backdoors
2018-10-11 20:24:54
patchstack
patchstack
WordPress Art-Picture-Gallery plugin <= 1.2.9 - Unauthenticated Arbitrary File Upload vulnerability
2020-04-02 00:00:00
exploitpack
exploitpack
Blueimps jQuery File Upload 9.22.0 - Arbitrary File Upload Exploit
2019-01-16 00:00:00
jQuery-File-Upload 9.22.0 - Arbitrary File Upload
2018-10-11 00:00:00
Mikrotik WinBox 6.42 - Credential Disclosure (golang)
2018-08-17 00:00:00
ubuntucve
ubuntucve
CVE-2018-9206
2018-10-11 00:00:00
CVE-2018-10933
2018-10-16 00:00:00
CVE-2018-7600
2018-03-29 00:00:00
osv
osv
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload
2018-10-22 18:53:56
CVE-2018-9206
2018-10-11 15:29:00
libssh - security update
2018-10-17 00:00:00
canvas
canvas
Immunity Canvas: JQUERY_FILE_UPLOAD
2018-10-11 15:29:00
openvas
openvas
Blueimp jQuery-File-Upload < 9.24.1 File Upload Vulnerability - Active Check
2018-11-02 00:00:00
Mikrotik RouterOS 'Winbox Service' Information Disclosure Vulnerability - Active Check
2018-07-06 00:00:00
Mikrotik RouterOS 'Winbox Service' Information Disclosure Vulnerability - Version Check
2018-04-25 00:00:00
debiancve
debiancve
CVE-2018-9206
2018-10-11 15:29:00
CVE-2018-10933
2018-10-17 12:29:00
CVE-2018-7600
2018-03-29 07:29:00
cve
cve
CVE-2018-9206
2018-10-11 15:29:00
CVE-2018-4407
2019-04-03 18:29:00
CVE-2018-14847
2018-08-02 07:29:00
attackerkb
attackerkb
CVE-2018-14847
2018-08-02 00:00:00
CVE-2018-10933
2020-03-13 00:00:00
Drupalgeddon 2
2018-03-29 00:00:00
thn
thn
TrickBot Malware Abusing MikroTik Routers as Proxies for Command-and-Control
2022-03-17 10:05:00
Mēris Botnet Hit Russia's Yandex With Massive 22 Million RPS DDoS Attack
2021-09-11 11:18:00
Botnet of Thousands of MikroTik Routers Abused in Glupteba, TrickBot Campaigns
2022-03-23 09:49:00
impervablog
impervablog
Imperva Mitigates Ransom DDoS Attack Measuring 2.5 Million Requests per Second
2022-03-04 15:21:44
The 3 Biggest DDoS Attacks Imperva Has Mitigated
2022-05-31 15:12:48
Drupalgeddon 2.0: Are Hackers Slacking Off?
2018-04-13 19:13:25
hackread
hackread
MikroTik router vulnerability lets hackers bypass firewall to load malware undetected
2018-10-09 17:37:16
cisa_kev
cisa_kev
MikroTik Router OS Directory Traversal Vulnerability
2021-12-01 00:00:00
Drupal Core Remote Code Execution Vulnerability
2021-11-03 00:00:00
talosblog
talosblog
VPNFilter III: More Tools for the Swiss Army Knife of Malware
2018-09-26 07:59:00
mmpc
mmpc
Uncovering Trickbot’s use of IoT devices in command-and-control infrastructure
2022-03-16 15:00:00
mssecure
mssecure
Uncovering Trickbot’s use of IoT devices in command-and-control infrastructure
2022-03-16 15:00:00
exploitdb
exploitdb
Mikrotik WinBox 6.42 - Credential Disclosure (golang)
2018-08-17 00:00:00
Blueimp&#039;s jQuery File Upload 9.22.0 - Arbitrary File Upload Exploit
2019-01-16 00:00:00
malwarebytes
malwarebytes
Fake browser update seeks to compromise more MikroTik routers
2018-10-12 15:00:06
redhatcve
redhatcve
CVE-2018-10933
2018-10-16 23:19:28
alpinelinux
alpinelinux
CVE-2018-10933
2018-10-17 12:29:00
CVE-2018-7600
2018-03-29 07:29:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libssh version 0.8.4-alt2
2018-10-17 00:00:00
Security fix for the ALT Linux 9 package libssh version 0.8.4-alt2
2018-10-17 00:00:00
Security fix for the ALT Linux 9 package libssh version 0.8.4-alt1
2018-10-17 00:00:00
suse
suse
Security update for libssh (important)
2018-10-19 18:22:47
Security update for libssh (important)
2018-10-17 18:09:57
fedora
fedora
[SECURITY] Fedora 27 Update: libssh-0.7.6-1.fc27
2018-10-21 00:22:46
[SECURITY] Fedora 28 Update: libssh-0.8.4-1.fc28
2018-10-20 23:52:20
[SECURITY] Fedora 29 Update: libssh-0.8.4-1.fc29
2018-10-30 17:47:50
saint
saint
libssh authentication bypass
2018-10-29 00:00:00
Drupal Form API command execution
2018-04-25 00:00:00
libssh authentication bypass
2018-10-29 00:00:00
cisco
cisco
libssh Authentication Bypass Vulnerability Affecting Cisco Products: October 2018
2018-10-19 16:00:00
ics
ics
Hitachi ABB Power Grids XMC20 Multiservice-Multiplexer
2020-10-20 12:00:00
Hitachi ABB Power Grids FOX615 Multiservice-Multiplexer
2021-01-07 12:00:00
debian
debian
[SECURITY] [DSA 4322-1] libssh security update
2018-10-17 16:16:35
[SECURITY] [DSA 4322-1] libssh security update
2018-10-17 16:16:35
[SECURITY] [DSA 4156-1] drupal7 security update
2018-03-28 22:31:37
freebsd
freebsd
libssh -- authentication bypass vulnerability
2018-10-16 00:00:00
drupal -- Drupal Core - Multiple Vulnerabilities
2018-03-13 00:00:00
ibm
ibm
Security Bulletin: API Connect Developer Portal is affected by Drupal vulnerability (CVE-2018-7600)
2018-06-15 07:09:07
fortinet
fortinet
CVE-2018-10933 libssh authentication bypass
2018-11-21 00:00:00
archlinux
archlinux
[ASA-201810-10] libssh: authentication bypass
2018-10-17 00:00:00
[ASA-201804-1] drupal: arbitrary code execution
2018-04-01 00:00:00
f5
f5
K52868493 : libssh vulnerability CVE-2018-10933
2018-10-18 00:00:00
K22854260 : Drupal vulnerability CVE-2018-7600
2018-03-29 00:00:00
qualysblog
qualysblog
Staying Safe in the Era of Browser-based Cryptocurrency Mining
2018-07-25 17:00:02
hackerone
hackerone
U.S. Dept Of Defense: [CVE-2018-7600] Remote Code Execution due to outdated Drupal server on www.█████████
2020-12-21 07:51:14
slackware
slackware
[slackware-security] libssh
2018-10-17 03:52:18
ubuntu
ubuntu
libssh vulnerability
2018-10-22 00:00:00
libssh vulnerability
2018-10-17 00:00:00
mageia
mageia
Updated libssh packages fix security vulnerability
2019-01-20 03:02:33
wallarmlab
wallarmlab
Drupalgeddon Two.
2018-04-20 19:31:22
seebug
seebug
Drupal core Remote Code Execution(CVE-2018-7600) (Drupalgeddon2)
2018-03-30 00:00:00
nuclei
nuclei
Drupal - Remote Code Execution
2021-02-15 13:33:33

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.976 High

EPSS

Percentile

100.0%

JSON
Related for KITPLOIT:5494076556436489947
packetstorm10github2checkpoint_advisories5prion5wpexploit2dsquare3zdt8veracode2metasploit3kitploit2wpvulndb2nessus25threatpost10patchstack1exploitpack7ubuntucve3osv9canvas1openvas22debiancve3cve5attackerkb3thn8impervablog4hackread1cisa_kev2talosblog1mmpc1mssecure1exploitdb2malwarebytes1redhatcve1alpinelinux2altlinux5suse2fedora3saint6cisco1ics2debian6freebsd2ibm1fortinet1archlinux2f52qualysblog1hackerone1slackware1ubuntu2mageia1wallarmlab1seebug1nuclei1