LightsOut - Generate An Obfuscated DLL That Will Disable AMSI And ETW

LightsOut will generate an obfuscated DLL that will disable AMSI & ETW while trying to evade AV. This is done by randomizing all WinAPI functions used, xor encoding strings, and utilizing basic sandbox checks. Mingw-w64 is used to compile the obfuscated C code into a DLL that can be loaded into a...

CVE-2021-29209

A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...

Google Play Removes 22 Malicious ‘LightsOut’ Apps From Marketplace

Nearly two dozen Android flashlight and related utility apps were removed from the Google Play marketplace after researchers found a malicious advertising component dubbed “LightsOut” inside them. In total, the apps were downloaded between 1.5 and 7.5 million times. Security researchers at Check...

LightsOut/Hello Exploit Kit (CVE-2013-2465)

LightsOut/Hello is an exploit kit that operates by delivering malicious payload to the victim's computer. Remote attackers can infect users by enticing them to visit a malicious web page. Successful infection will allow the attacker to download additional malware to the target...

AskMen Purportedly Compromised by Nuclear Pack Kit

Users who visit AskMen.com, a men’s entertainment and lifestyle portal, are being hit with malicious code, potentially stemming from the Nuclear Pack exploit kit, researchers announced today. When a user stumbles across the site – or a localized version aus.askmen.com, etc. of it – malicious code...

Energy Watering Hole Attack Used LightsOut Exploit Kit

A recent watering-hole attack targeted firms in the energy sector using a compromised site belonging to a law firm that works with energy companies and led victims to a separate site that used the LightsOut exploit kit to compromise their machines. The attack, which was active during late Februar...

HP LightsOut Server Detection

Binary data 6954.prm...

Unfixed XSS vulnerability at www.mobilegamefaqs.com

Security researcher LightsOut, has submitted on 10/11/2008 a cross-site-scripting XSS vulnerability affecting www.mobilegamefaqs.com, which at the time of submission ranked 118053 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/11/2008. It i...

Unfixed XSS vulnerability at atlllc.com

Security researcher LightsOut, has submitted on 09/11/2008 a cross-site-scripting XSS vulnerability affecting atlllc.com, which at the time of submission ranked 24817186 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/11/2008. It is currentl...