CVE-2019-25319

Domain Quester Pro 6.02 is affected by a stack overflow affecting the Structured Exception Handler (SEH). The vulnerability can be triggered by crafting a malicious payload in the Domain Name Keywords input field, leading to an access violation and remote code execution, including a bind shell on...

Exploit for CVE-2024-44610

CVE-2024-44610: PEAK PCAN-Ethernet Gateway FD DR Authenticated...

MultiPotato - Another Potato to get SYSTEM via SeImpersonate privileges

First of all - credit to @splintercode & @decoderit for RoguePotato as this code heavily bases on it. This is just another Potato to get SYSTEM via SeImpersonate privileges. But this one is different in terms of It doesn't contain any SYSTEM auth trigger for weaponization. Instead the code can be...

Linux/x86 Bindshell With Dynamic Port Binding Shellcode (102 bytes)

Exploit Title: Linux/x86 - bindshell with dynamic shellcode port binding size: 102 bytes Exploit Author: d7x Tested on: Ubuntu x86 / x86 bindshell with dynamic shellcode port binding size: 102 bytes tested on Ubuntu 12.04 LTS Author: d7x https://d7x.promiselabs.net/ https://www.promiselabs.net/ /...

Shepard - In Progress Persistent Download/Upload/Execution Tool Using Windows BITS

This is an IN PROGRESS persistance tool using Windows Background Intelligent Transfer Service BITS. Functionality: File Download, File Exfiltration, File Download + Persistent Execution Usage: run shepard.exe as Administrator with the following command line arguments -d remoteLocation, writePath:...

Linux/ARM 0.0.0.0:1337/TCP Bindshell Shellcode

100 bytes small null-free Linux/ARM shellcode that binds /bin/sh to 0.0.0.0:1337/TCP. Title: Linux/ARM Raspberry Pi - Bind 0.0.0.0:1337/TCP Shell /bin/sh + Null-Free Shellcode 100 bytes Date: 2020-06-09 Architecture: armv6l GNU/Linux Website: http://www.theanuragsrivastava.com Author: Anurag...

Linux/x64 - Password Protected Bindshell + Null-free Shellcode (272 Bytes)

Exploit Title: Linux/x64 - Password Protected Bindshell + Null-free Shellcode 272 Bytes Exploit Author: Bobby Cooke Tested on: Linux x8664 SMP Debian 5.3.15-1kali1 SLAE/Student ID: PA-10913 Course: This shellcode was created for the x8664 Assembly Language and Shellcoding on Linux SLAE64 Course...

Linux/x86 TCP/4444 Bindshell Shellcode (100 bytes)

; Title : Linux/x86 - Bind 4444/TCP Shell /bin/bash Shellcode 100 bytes ; Date : Jan, 2019 ; Author : Joao Batista ; Website : overflw.wordpress.com ; Twitter : @x42x42x42x42 ; SLAE-ID : 1420 ; Tested on : i686 GNU/Linux global start section .text start: xor eax,eax xor ebx,ebx ; socket push ebx...

Linux/x86 TCP Port 1337 Bindshell Shellcode

92 bytes small Linux x86 tcp/1337 bindshell shellcode. / Linux x86 Bind TCP shellcode This shellcode will listen on port 1337 and give you /bin/sh Shellcode Author: Anurag Srivastava Shellcode Length: 92 Student-ID: SLAE-1219 Note...

Immunity Canvas: IDRAC_APPWEB_RCE

Name| idracappwebrce ---|--- CVE| CVE-2018-1207 Exploit Pack| CANVAS Description| iDrac8 WebApp RCE Notes| CVE Name: CVE-2018-1207 NOTES: This module exploits a CGI Injection vulnerability in iDRAC8 in order to achieve Remote Code Execution. We upload a shared library that we can then invoke with...

Linux/x86-64 - sys_access() Egghunter Shellcode (49 bytes)

; Author Doreth.Z10 ; ; Linux x8664 Egghunter using sysaccess ; Shellcode size 49 bytes ; global start section .text start: xor rsi, rsi ; Some prep junk. push rsi pop rdx push 8 pop rbx goendofpage: or dx, 0xfff ; We align with a page size of 0x1000 nextbyte: inc rdx ; next byte offset push 21 p...

Linux/x86 - Bindshell with Configurable Port Shellcode (87 bytes)

/===================================================================/ / Filename: bindshell.c Author: JollyFrogs email protected License: This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License. Compile: gcc -m32 -fno-stack-protector -z execstack...

Linux/x86-64 - bindshell (Port 5600) Shellcode (86 bytes)

/ --------------------------------------------------------------------------------------------------- Linux/x8664 - bindshell PORT: 5600 - 86 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa Sad-Gamaya | Tamaso Maa Jyotir-Gamaya | Mrtyor-Maa Amrtam Gamaya | Om Shaant...

Linux/x86_64 - bindshell Port 5600 - 86 bytes

Linux/x8664 - bindshell Port 5600 - 86 bytes. Shellcode exploit for linx86-64 platform / --------------------------------------------------------------------------------------------------- Linux/x8664 - bindshell PORT: 5600 - 86 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om...

Linux/x86-64 - bindshell (Port 5600) Shellcode (81 bytes)

/ --------------------------------------------------------------------------------------------------- Linux/x8664 - bindshell PORT: 5600 - 81 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa Sad-Gamaya | Tamaso Maa Jyotir-Gamaya | Mrtyor-Maa Amrtam Gamaya | Om Shaant...

Linux/x86_64 - bindshell PORT: 5600 - 81 bytes

Linux/x8664 - bindshell PORT: 5600 - 81 bytes. Shellcode exploit for linx86-64 platform / --------------------------------------------------------------------------------------------------- Linux/x8664 - bindshell PORT: 5600 - 81 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com O...

TCP Bindshell with Password Prompt - 162 bytes

TCP Bindshell with Password Prompt - 162 bytes. Shellcode exploit for linux platform /--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact:...

Linux/x86-64 - Bindshell 4444/TCP with Password Prompt Shellcode (162 bytes)

/--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact: https://www.linkedin.com/in/sathish94 Description: x64 Linux bind TCP port shellcode on po...

Datalife Engine 9.7 preview.php Bindshell

?php // Exploit Title: Datalife Engine 9.7 Bindshell Exploit // Date: 13/12/2015 // Exploit Author: ssbostan // Vendor Homepage: http://dleviet.com/ // Version: == 9.7 // Tested on: Datalife Engine 9.7 // CVE: http://www.cvedetails.com/cve/CVE-2013-1412/...

linux/x86 - Netcat BindShell Port 5555 - 60 bytes

Greetz : BombermanLeader Author : B3mB4m Concat : Do not disturb - Bomberman Netcat openbsd version which is default installed in ubuntu have not "-e" option. So if you are trying to test on ubuntulike me you must change version to traditional. Typing this: 1 sudo update-alternatives --config nc ...