MimiPenguin

This searches process memory for needles that indicate where cleartext passwords may be located. If any needles are discovered in the target process memory, collected strings in adjacent memory will be hashed and compared with password hashes found in /etc/shadow. Module Options msf use...

Ipa-Medit - Memory Search And Patch Tool For Resigned Ipa Without Jailbreak

Ipa-medit is a memory search and patch tool for resigned ipa without jailbreak. It was created for mobile game security testing. Motivation Memory modification is the easiest way to cheat in games, it is one of the items to be checked in the security test. There are also cheat tools that can be...

Google Chrome 81.0.4044 V8 Remote Code Execution

Exploit Title: Google Chrome prior 83.0.4103.106 V8 - Remote Code Execution Date: 06/04/2021 Exploit Author: Tobias Marcotto Tested on: Kali Linux x64 Version: 83.0.4103.106 Description: Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially...

Apk-Medit - Memory Search And Patch Tool On Debuggable Apk Without Root & Ndk

Apk-medit is a memory search and patch tool for debuggable apk without root & ndk. It was created for mobile game security testing. Motivation Memory modification is the easiest way to cheat in games, it is one of the items to be checked in the security test. There are also cheat tools that can b...

Linux/x64_86 Egghunter Execve Shellcode (63 bytes)

63 bytes small Linux/x6486 dynamic egghunter shellcode that searches memory for 2 instances of the egg. When the eggs are found, the egghunter passes execution control to the payload at the memory address of the eggs. The payload is an execve/bin/bash shellcode. // Shellcode Title: Linux/x64 -...

PEDA - Python Exploit Development Assistance For GDB

PEDA - Python Exploit Development Assistance for GDB Key Features: Enhance the display of gdb: colorize and display disassembly codes, registers, memory information during debugging. Add commands to support debugging and exploit development for a full list of commands use peda help: aslr --...

Linux/ARM - Egghunter (0x50905090) + execve(/bin/sh) Shellcode (60 bytes)

/ Title: Linux/ARM - Memsafe egghunter 0x50905090 + execve"/bin/sh". Null free shellcode 60 bytes Date: 2018-06-06 Tested: armv7l Raspberry Pi v3 and armv6l Raspberry Pi Zero W Author: rtmcx - twitter: @rtmcx Description: The shellcode will search the memory for the "EGG" and, when found, redirec...

Forticlient ™ end-SSLVPN 5.4 - credentials information disclosure

No description provided by source. from winappdbg import Debug, Process, HexDump import sys filename = "FortiTray.exe" 程序名 searchstring = "fortissl" 当用户凭证存储在进程内存中，模仿偏移 查询用户凭证函数 def memorysearch pid, strings : process = Process pid memdump =...

linux/x86 Egg-hunter - 20 bytes

; Egg Hunter 20 bytes ; - searches from current addr towards lower memory ; - marker: 0x5159 push ecx,pop ecx ; Paw Petersen, SLAE-656 ; https://www.pawpetersen.dk/slae-assignment-3-egg-hunter-linux-x86/ global start section .text start: jmp callegghunter egghunter: pop ecx ; save addr ptr sub ec...

FreeBSD <= 6.4 Netgraph Local Privledge Escalation Exploit

No description provided by source. / FreeBSD = 6.4-RELEASE Netgraph Exploit by zx2c4 This is an exploit for CVE-2008-5736, the FreeBSD protosw and loosely based on Don Bailey's 2008 exploit - http://www.exploit-db.com/exploits/7581/ . The thing with Don's exploit is that it relies on having a kno...

[WinAppDbg 1.5] Python Debugger

The WinAppDbg python module allows developers to quickly code instrumentation scripts in Python under a Windows environment. It uses ctypes to wrap many Win32 API calls related to debugging, and provides an object-oriented abstraction layer to manipulate threads, libraries and processes, attach...

FreeBSD 6.4 - Netgraph Privilege Escalation

FreeBSD 6.4 - Netgraph Privilege Escalation / FreeBSD include include include...

Foxit Reader Crafted PDF Title Handling Stack Buffer Overflow

Added: 11/22/2010 OSVDB: 68648 Background Foxit Reader is a free PDF reader for Microsoft Windows systems. Problem Foxit Reader for Windows is vulnerable to a stack buffer overflow which could allow execution of arbitrary code. A remote attacker can exploit this vulnerability by enticing a user t...

feedDemon version 3.1.0.9 .opml file local buffer overflow exploit

Exploit for unknown platform in category local exploits ================================================================== feedDemon version 3.1.0.9 .opml file local buffer overflow exploit ================================================================== /Download latest vuln app...

Microsoft Windows - Compressed Zipped Folders (MS04-034)

/ Microsoft Windows Vulnerability in Compressed zipped Folders MS04-034 Tested under Windows XP SP0 Spanish/English Original Advisory: http://www.eeye.com/html/research/advisories/AD20041012A.html Exploit Date: 21/10/2004 Tarako - Haxorcitos.com 2004 THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY ...