78 matches found
Wordpress duena theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress duena theme - Arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Wordpress cafesalivation theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress cafesalivation theme - Arbitrary file downloadliberator author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Lansweeper 6.0.0.63 Cross Site Scripting Vulnerability
Exploit for asp platform in category web applications ============================================= - Discovered by: Giovanni Cerrato, Giovanni Guido and BackBox team - Severity: Medium ============================================= I. VULNERABILITY ------------------------- Lansweeper XSS...
Lansweeper 6.0.0.63 Cross Site Scripting
============================================= - Release date: October 05th, 2017 - Discovered by: Giovanni Cerrato, Giovanni Guido and BackBox team - Severity: Medium ============================================= I. VULNERABILITY ------------------------- Lansweeper XSS vulnerability. II...
WPScan v2.9.4 - Black Box WordPress Vulnerability Scanner
WPScan is a black box WordPress vulnerability scanner. INSTALL WPScan comes pre-installed on the following Linux distributions: BackBox Linux Kali Linux Pentoo SamuraiWTF BlackArch On macOS WPScan is packaged by Homebrew as wpscan. Windows is not supported We suggest you use the official Docker...
BruteSploit - Collection Of Method For Automated Generate, Bruteforce And Manipulation Wordlist
BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and can be used in CTF for manipulation,combine,transform and permutation some words or file text. Tutorial Check in...
BackBox Linux Denial of Service Vulnerability
BackBox is a Linux distribution based on Ubuntu, an operating system for network penetration testing and security assessment. A denial of service vulnerability exists in BackBox Linux version 4.6 that allows remote attackers to cause a denial of service ksoftirqd CPU consumption via a large numbe...
CVE-2017-7397
BackBox Linux 4.6 allows remote attackers to cause a denial of service ksoftirqd CPU consumption via a flood of packets with Martian source IP addresses as defined in RFC 1812 section 5.3.7. This product enables net.ipv4.conf.all.logmartians by default. NOTE: the vendor reports "It has been prove...
CVE-2017-7397
BackBox Linux 4.6 allows remote attackers to cause a denial of service ksoftirqd CPU consumption via a flood of packets with Martian source IP addresses as defined in RFC 1812 section 5.3.7. This product enables net.ipv4.conf.all.logmartians by default. NOTE: the vendor reports "It has been prove...
Default credentials
DISPUTED BackBox Linux 4.6 allows remote attackers to cause a denial of service ksoftirqd CPU consumption via a flood of packets with Martian source IP addresses as defined in RFC 1812 section 5.3.7. This product enables net.ipv4.conf.all.logmartians by default. NOTE: the vendor reports "It has...
CVE-2017-7397
BackBox Linux 4.6 allows remote attackers to cause a denial of service ksoftirqd CPU consumption via a flood of packets with Martian source IP addresses as defined in RFC 1812 section 5.3.7. This product enables net.ipv4.conf.all.logmartians by default. NOTE: the vendor reports "It has been prove...
CVE-2017-7397
CVE-2017-7397 relates to BackBox Linux 4.6, where a denial-of-service is possible via a flood of packets with Martian source IPs (RFC 1812 5.3.7). The issue arises with net.ipv4.conf.all.log_martians enabled by default, potentially causing ksoftirqd CPU consumption. Connected documents corroborat...
PT-2017-17707 · Blackbox · Backbox Linux
Name of the Vulnerable Software and Affected Versions: BackBox Linux version 4.6 Description: The issue allows remote attackers to cause a denial of service, specifically ksoftirqd CPU consumption, via a flood of packets with Martian source IP addresses, as defined in RFC 1812 section 5.3.7. This...
BackBox OS Denial Of Service Exploit
Exploit for linux platform in category dos / poc Exploit Title: BackBox OS Denial Of ServiceCPU Consumption CVE: CVE-2017-7397 CWE: CWE-400 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://backbox.org/ Version : 4.6 Exploit Tested on: Ubuntu 16.04 Date: 01-04-2017 Category:...
BackBox OS Denial Of Service
//Exploited By Hosein Askari include include include include include ifdef FPASS include endif include include include include ifndef USEBSD define USEBSD endif ifndef FAVORBSD define FAVORBSD endif include include include include include include ifdef LINUX define FIXx htonsx else define FIXx x...
BackBox OS - Denial of Service
//Exploited By Hosein Askari include include include include include ifdef FPASS include endif include include include include ifndef USEBSD define USEBSD endif ifndef FAVORBSD define FAVORBSD endif include include include include include include ifdef LINUX define FIXx htonsx else define FIXx x...
BackBox OS - Denial of Service
BackBox OS - Denial of Service //Exploited By Hosein Askari include include include include include ifdef FPASS include endif include include include include ifndef USEBSD define USEBSD endif ifndef FAVORBSD define FAVORBSD endif include include include include include include ifdef LINUX define...
Ubuntu-based PenTest Linux Distribution: BackBox
BackBox Linux is a penetration testing and security assessment oriented Linux distribution providing a network and systems analysis toolkit. It includes some of the most commonly known/used security and analysis tools, aiming for a wide spread of goals, ranging from web application analysis to...
Dracnmap - Exploit Network and Gathering Information with Nmap
Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the...
Witbe - Remote Code Execution Exploit
Exploit for cgi platform in category web applications !/usr/bin/python Exploit Title: Witbe RCE Remote Code Execution Exploit Author: BeLmar Date: 05/10/2016 DEMO : https://youtu.be/ooUFXfUfIs0 Contact : email protected Vendor Homepage: http://www.witbe.net Tested on: Windows7/10 & BackBox...