268 matches found
Shocker - A tool to find and exploit servers vulnerable to Shellshock
A tool to find and exploit servers vulnerable to Shellshock Help Text usage: shocker.py -h, --help show this help message and exit --Host HOST, -H HOST A target hostname or IP address --file FILE, -f FILE File containing a list of targets --port PORT, -p PORT The target port number default=80...
Lobotomy - Android Reverse Engineering Framework & Toolkit
Lobotomy is an Android security toolkit that will automate different Android assessments and reverse engineering tasks. The goal of the Lobotomy toolkit is to provide a console environment, which would allow a user to load their target Android APK once, then have all the necessary tools without...
SFTPfuzzer - Simple FTP Fuzzer
SFTPfuzzer Simple FTP Fuzzer is a very simple software written in Python 2.7 by 0x8b30cc, that allows you to easily fuzz username and password field in an FTP Server , looking for a buffer overflow vulnerability. SFTPfuzzer is written in a very simple way, and the code is well commented, allowing...
Arpy - Mac OSX Arp Spoof (MITM) Tool
Arpy is an easy-to-use ARP spoofing MiTM tool for Mac. It provides 3 targeted functions: Packet Sniffing Visited Domains Visited Domains with Gource Each function will be explained below. Tested OS to date Darwin 14.3.0 Darwin Kernel Version 14.3.0 Mac OS X Requirements Python 2.7 Gource Scapy...
Sawef - Send Attack Web Forms
SAWEF - Send Attack Web Forms DESCRIPTION The purpose of this tool is to be a Swiss army knife for anyone who works with HTTP, so far it she is basic, bringing only some of the few features that want her to have, but we can already see in this tool: - Email Crawler in sites - Crawler forms on the...
USBTracker - Script to track USB devices events and artifacts in a Windows OS
USBTracker is a quick & dirty coded incident response and forensics Python script to dump USB related information and artifacts from a Windows OS vista and later. Special recommandations USBTracker read some protected log files and needs to be run with administrator permissions. The most simple w...
Solarwinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Execution Exploit
Exploit for windows platform in category remote exploits Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: The exploitlem.py...
SolarWinds Log and Event ManagerTrigeo SIM 6.1.0 - Remote Command Execution
SolarWinds Log and Event ManagerTrigeo SIM 6.1.0 - Remote Command Execution Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: Th...
SolarWinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Execution
Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: The exploitlem.py script will need to be run sudo since it uses sockets which...
Python 2.7 - strop.replace() Method Integer Overflow
Python 2.7 - strop.replace Method Integer Overflow Title: Python 2.7 strop.replace Integer Overflow Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-strop-replace-Integer-Overflow Url2: http://bugs.python.org/issue24708 Resolution: Fixed The Python 2.7...
Python 2.7 - array.fromstring Method Use-After-Free
Python 2.7 - array.fromstring Method Use-After-Free Title: Python 2.7 array.fromstring Use After Free Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-array-fromstring-Use-After-Free Url2: http://bugs.python.org/issue24613 Resolution: Fixed The Python 2.7...
Python 2.7 - 'array.fromstring' Method Use-After-Free
Title: Python 2.7 array.fromstring Use After Free Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-array-fromstring-Use-After-Free Url2: http://bugs.python.org/issue24613 Resolution: Fixed The Python 2.7 array.fromstring method suffers from a use after free caus...
Python 2.7 hotshot Module - pack_string Heap Buffer Overflow (PoC)
Python 2.7 hotshot Module - packstring Heap Buffer Overflow PoC Title: Python 2.7 hotshot packstring Heap Buffer Overflow Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-hotshot-packstring-Heap-Buffer-Overflow Url2: http://bugs.python.org/issue24481 Resolution:...
Python 2.7 hotshot Module - 'pack_string' Heap Buffer Overflow (PoC)
Title: Python 2.7 hotshot packstring Heap Buffer Overflow Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-hotshot-packstring-Heap-Buffer-Overflow Url2: http://bugs.python.org/issue24481 Resolution: Fixed The Python 2.7 hotspot module suffer from a heap buffer...
Python 2.7 Hotshot pack_string Heap Buffer Overflow
Title: Python 2.7 hotshot packstring Heap Buffer Overflow Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-hotshot-packstring-Heap-Buffer-Overflow Url2: http://bugs.python.org/issue24481 Resolution: Fixed The Python 2.7 hotspot module suffer from a heap buffer...
Python 2.7 array.fromstring Use After Free
Title: Python 2.7 array.fromstring Use After Free Credit: John Leitch [email protected] Url1: http://autosectools.com/Page/Python-array-fromstring-Use-After-Free Url2: http://bugs.python.org/issue24613 Resolution: Fixed The Python 2.7 array.fromstring method suffers from a use after free caus...
Python 2.7 check_multiply_size() Integer Overflow Vulnerability
Several functions within the imageop module are vulnerable to exploitable buffer overflows due to unsafe arithmetic in checkmultiplysize. The problem exists because the check to confirm that size == product / y / x does not take remainders into account. Title: Python 2.7 checkmultiplysize Integer...
Python 2.7 Hotshot pack_string Heap Buffer Overflow Vulnerability
Python version 2.7 hotshot module suffers from a heap buffer overflow due to a memcpy in the packstring function at line 633. Title: Python 2.7 hotshot packstring Heap Buffer Overflow Credit: John Leitch email protected Url1:...
Geotweet - Social engineering tool for human hacking
Another way to use Twitter and instagram. Geotweet is an osint application that allows you to track tweets and instagram and trace geographical locations and then export to google maps. Allows you to search on tags, world zones and user info and timeline. Requirements Python 2.7 PyQt4, tweepy,...
Katoolin - Automatically install all Kali Linux tools
Automatically install all Kali linux tools Features Add Kali linux repositories Remove kali linux repositorie Install Kali linux tools Requirements Python 2.7 An operating system tested on Ubuntu Instalation sudo su git clone https://github.com/LionSec/katoolin.git && cp katoolin/katoolin.py...