x64 Linux bind TCP port shellcode 81 bytes, 96 with password

x64 Linux bind TCP port shellcode 81 bytes, 96 with password. Shellcode exploit for linx86-64 platform / Author: Sean Dillon Copyright: c 2014 CAaNES, LLC. http://caanes.com Release Date: December 19, 2014 Description: x64 Linux null-free TCP bind port shellcode, optional 4 byte password Assemble...

linux/x64 reverse TCP connect shellcode 85 bytes

x64 Linux reverse TCP connect shellcode 77 to 85 bytes, 90 to 98 with password / Author: Sean Dillon Copyright: c 2014 CAaNES, LLC. http://caanes.com Release Date: December 19, 2014 Description: x64 Linux null-free reverse TCP shellcode, optional 4 byte password Assembled Size: 77 - 85 bytes, 90 ...

VFU 4.10-1.1 - Buffer Overflow Exploit

Exploit for linux platform in category local exploits Exploit Author: Juan Sacco - http://www.exploitpack.com Tested on: GNU/Linux - Debian Wheezy Description: VFU v4.10-1.1 is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks o...

AutoScan-Network - Automatically scan your network

AutoScan-Network is a network scanner discovering and managing application. No configuration is required to scan your network. The main goal is to print the list of connected equipments in your network. System Requirements : •Mac OS X 10.5 or later •Microsoft Windows XP, Vista •GNU/Linux •Maemo 4...

Minimalistic CLI Tool to Manage Encrypted Volumes: Tomb

Tomb is an 100% free and open source system for file encryption on GNU/Linux, facilitating the backup of secret files. Tomb is written in code that is easy to review and links commonly shared components. Tomb generates encrypted storage folders to be opened and closed using their associated...

WordPress Download Manager Arbitrary File Download

WordPress Download Manager Plugin - Arbitrary File Download CWE: CWE-98 Risk: High Author: Hugo Santiago dos Santos Contact: [email protected] Date: 25/10/2014 Vendor Homepage: https://wordpress.org/plugins/download-manager/ Tested on: Windows 7 and Gnu/Linux Google Dork:...

WordPress HTML5 / Flash Player SQL Injection

WordPress HTML5 and FLash PLayer Plugin SQL Injection CWE: CWE-89 Risk: High Author: Hugo Santiago dos Santos Contact: [email protected] Date: 24/10/2014 Vendor Homepage: https://wordpress.org/plugins/player/ Tested on: Windows 7 and Gnu/Linux Google Dork: inurl: "Index of"...

CAINE 6.0 "Dark Matter" - Distribution with a complete forensic environment

CAINE Computer Aided INvestigative Environment is an Italian GNU/Linux live distribution created as a project of Digital Forensics. Currently the project manager is Nanni Bassetti. CAINE offers a complete forensic environment that is organized to integrate existing software tools as software...

Mulitple WordPress Themes - admin-ajax.php?img Arbitrary File Download

Mulitple WordPress Themes - admin-ajax.php?img Arbitrary File Download WordPress CuckooTap Theme & eShop Arbitrary File Download Risk: High CWE number: CWE-200 Author: Hugo Santiago Contact: [email protected] Date: 31/08/2014 Vendor Homepage:...

Mulitple WordPress Themes - 'admin-ajax.php?img' Arbitrary File Download

WordPress CuckooTap Theme & eShop Arbitrary File Download Risk: High CWE number: CWE-200 Author: Hugo Santiago Contact: [email protected] Date: 31/08/2014 Vendor Homepage: http://themeforest.net/item/cuckootap-one-page-parallax-wp-theme-plus-eshop/3512405 Tested on: Windows 7 and Gnu/Linux...

WordPress CuckooTap Theme & eShop Arbitrary File Download

Exploit for php platform in category web applications WordPress CuckooTap Theme & eShop Arbitrary File Download Risk: High CWE number: CWE-200 Author: Hugo Santiago Contact: email protected Date: 31/08/2014 Vendor Homepage:...

Digital Forensics Toolkit: DEFT

DEFT acronym for Digital Evidence & Forensics Toolkit is a distribution made for Computer Forensics, with the purpose of running live on systems without tampering or corrupting devices hard disks, pendrives, etc… connected to the PC where the boot process takes place. The system is based on GNU...

Immunity Canvas: LINUX_PPPOL2TP

Name| linuxpppol2tp ---|--- CVE| CVE-2014-4943 Exploit Pack| CANVAS Description| pppol2tp local root Notes| Repeatability: Single Notes: Exploit for Linux = 3.4.x amd64 and = 3.7.x x86 Tested on + Ubuntu 13.04 / 13.10 / 14.04 x86/amd64 + Fedora 17 amd64 only + Fedora 18/19/20 x86/amd64 Note:...

OpenVAS Manager 4.0 - Authentication Bypass

!/usr/bin/python Exploit Title: OpenVAS Manager 4.0 Authentication Bypass Vulnerability PoC Date: 09/07/2014 Exploit Author: EccE Vendor Homepage: http://www.openvas.org/ Software Link: http://wald.intevation.org/frs/?groupid=29 Version: OpenVAS Manager 4.0 Tested on: Debian GNU/Linux testing...

Linux/x86_64 reboot(POWER_OFF) 19 bytes shellcode

No description provided by source. Linux/x8664 rebootPOWEROFF 19 bytes shellcode Date: 2010-04-25 Author: zbt Tested on: x8664 Debian GNU/Linux / ; rebootLINUXREBOOTMAGIC1, LINUXREBOOTMAGIC2, LINUXREBOOTCMDPOWEROFF section .text global start start: mov edx, 0x4321fedc mov esi, 0x28121969 mov edi,...

Posse Softball Director CMS SQL Injection Vulnerabilitiy

No description provided by source. Exploit Title: Posse Sports SQL Injection Vulnerabilitiy Google Dork: Powered By Posse Sports Date: 4/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: www.possesports.com Version: All Version Category::...

cURL 6.1 - 7.4 - Remote Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax. A vulnerability exists in the version of curl included with Debian GNU/Linux 2.2 and FreeBSD prior to 4.2 release. Note that cURL...

Ptag <= 4.0.0 - Multiple RFI Exploit

No description provided by source. Exploit Title: Ptag = 4.0.0 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/ptag/ Version: N/A Tested on: GNU/LINUX Code session.php ?php //Plottable Tagboard Systems Version 4.0.0 - ROLAND //Session handling...

cURL 6.1 - 7.4 - Remote Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax. A vulnerability exists in the version of curl included with Debian GNU/Linux 2.2 and FreeBSD prior to 4.2 release. Note that cURL...

gpEasy <= 1.5RC3 Remote FIle Include Exploit

No description provided by source. Exploit Title: gpEasy = 1.5RC3 Remote FIle Include Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/gpeasy/files/ Version: N/A Tested on: GNU/LINUX Code adminpassword.php :...