Windows Command Shell, Bind IPv6 TCP Stager with UUID Support (Windows x86)

Spawn a piped command shell staged. Listen for an IPv6 connection with UUID Support Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 331 include Msf::Payload::Stager...

Windows x64 Command Shell, Windows x64 IPv6 Bind TCP Stager with UUID Support

Spawn a piped command shell Windows x64 staged. Listen for an IPv6 connection with UUID Support Windows x64 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 526 include...

BSD x64 Command Shell, Bind TCP Inline (IPv6)

Listen for a connection and spawn a command shell over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 90 include Msf::Payload::Single include Msf::Payload::Bsd include...

BSD x64 Shell Reverse TCP

Connect back to attacker and spawn a command shell This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 98 include Msf::Payload::Single include Msf::Payload::Bsd include...

WPMU < 2.9.1 PHP Remote Code Execute 0day Exploit

its a straight forward and easy to use exploit that injects a command shell into wp-config.php Usage Info php exp.php don't forget to add http This is private exploit. You can buy it at https://0day.today...

MySQL Login Utility

This module simply queries the MySQL instance for a specific user/pass default is root with blank. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' require...

Windows Inject DLL, Hidden Bind TCP Stager

Inject a custom DLL into the exploited process. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule...

VNC Server (Reflective Injection), Hidden Bind TCP Stager

Inject a VNC Dll via a reflective loader staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule...

Windows Meterpreter (skape/jt Injection), Hidden Bind TCP Stager

Inject the meterpreter server DLL staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize =...

Windows Upload/Execute, Hidden Bind TCP Stager

Uploads an executable and runs it staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize =...

Windows Command Shell, Hidden Bind TCP Stager

Spawn a piped command shell staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 343...

Reflective DLL Injection, Hidden Bind TCP Stager

Inject a DLL via a reflective loader. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 343...

Windows Meterpreter (Reflective Injection), Hidden Bind TCP Stager

Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Listen for a connection from a hidden port and spawn a command shell to the allowed host. This module requires Metasploit: https://metasploit.com/download Current source:...

PostgreSQL Login Utility

This module attempts to authenticate against a PostgreSQL instance using username and password combinations indicated by the USERFILE, PASSFILE, and USERPASSFILE options. Note that passwords may be either plaintext or MD5 formatted hashes. This module requires Metasploit:...

PHP <= 5.2.3 snmpget() object id Local Buffer Overflow Exploit (EDI)

No description provided by source. ?php / Inphex reference -http://milw0rm.com/exploits/4204 317 Bytes , Windows Command Shell Bind TCP Inline , Architecture x86 , Windows TinyXP - vm. GET /script.php HTTP/1.1\n telnet 192.168.2.32 4444 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001...

BBSNew 2.0.1 Index2.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20204/info bbsNew is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script co...

Adobe Reader for Android addJavascriptInterface Exploit

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/fileformat' require 'msf/core/exploit/pdf' require 'msf/core/exploit/android' class...

Active PHP Bookmark Notes <= 0.2.5 - Remote File Inclusion Exploit

No description provided by source. !/usr/bin/perl Active PHP Bookmark Notes 0.2.5 = Remote File Inclusion Exploit Download S: http://sourceforge.net/projects/apbn/ Discovered & Coded by: GloDM = Mahmoodali perl GloD.pl target cmd shell location cmd shell variable cmd shell example:...

phpBB Security <= 1.0.1 (php_security.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl phpBB Security 1.0.1 Class: Remote File Include Vulnerability Date: 2006/10/12 Remote: Yes Type: high Site: http://www.phpbb-amod.com/downloads/phpBBSecurity.zip...

phpBB SpamOborona Mod <= 1.0b Remote File Include Exploit

No description provided by source. !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...