Lucene search
K

17 matches found

Rapid7 Blog
Rapid7 Blog
added 2024/11/21 5:19 p.m.21 views

A Bag of RATs: VenomRAT vs. AsyncRAT

Introduction Remote access tools RATs have long been a favorite tool for cyber attackers, since they enable remote control over compromised systems and facilitate data theft, espionage, and continuous monitoring of victims. Among the well-known RATs are VenomRAT and AsyncRAT. These are open-sourc...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/05/03 12:0 a.m.45 views

Windows/x64 Inject All Processes With Meterpreter Reverse Shell Shellcode (655 bytes)

Shellcode Title: Windows/x64 - Inject All Processes with Meterpreter Reverse Shell 655 Bytes Shellcode Author: Bobby Cooke boku Tested on: Windows 10 v2004 x64 Compiled from: Kali Linux x8664 Shellcode Description: 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse...

0.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.23 views

Windows Inject Reflective PE Files, Windows x64 Reverse TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.34 views

Windows Inject Reflective PE Files, Bind TCP Stager (RC4 Stage Encryption, Metasm)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.20 views

Windows Inject Reflective PE Files, Reverse TCP Stager (RC4 Stage Encryption, Metasm)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.21 views

Windows Inject PE Files, Reverse TCP Stager with UUID Support

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.46 views

Windows Inject PE Files, Hidden Bind TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.10 views

Windows Inject PE Files, Bind IPv6 TCP Stager (Windows x86)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.24 views

Windows Inject PE Files, Reverse TCP Stager (RC4 Stage Encryption DNS, Metasm)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.14 views

Windows Inject PE Files, Reverse Ordinal TCP Stager (No NX or Win7)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.39 views

Windows Inject PE Files, Hidden Bind Ipknock TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.14 views

Windows Inject PE Files, Reverse TCP Stager (IPv6)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.23 views

Windows Inject PE Files, Bind TCP Stager with UUID Support (Windows x86)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.13 views

Windows Inject PE Files, Reverse TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.13 views

Windows Inject PE Files, Bind TCP Stager (No NX or Win7)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2020/09/02 5:41 p.m.9 views

Windows Inject PE Files, Reverse All-Port TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/03/27 3:0 p.m.302 views

Detecting and mitigating elevation-of-privilege exploit for CVE-2017-0005

On March 14, 2017, Microsoft released security bulletin MS17-013 to address CVE-2017-0005, a vulnerability in the Windows Win32k component that could potentially allow elevation of privileges. A report from a trusted partner identified a zero-day exploit for this vulnerability. The exploit target...

6.9CVSS0.5AI score0.11022EPSS
Exploits1
Rows per page
Query Builder