Cobalt Strike. Walkthrough for Red Teamers

What is Cobalt Strike? Raphael Mudge is the creator of Cobalt Strike CS, around 2010 he released a tool titled Armitage, which is described by wikipedia as a graphical cyber-attack management for the Metasploit Project, to put this more bluntly, Armitage is a gui that allows you to easily navigat...

TrueOnline / Billion 5200W-T Router Unauthenticated Command Injection Exploit

TrueOnline is a major ISP in Thailand, and it distributes a customized version of the Billion 5200W-T router. This customized version has at least two command injection vulnerabilities, one authenticated and one unauthenticated, on different firmware versions. This Metasploit module will attempt ...

TrueOnline / ZyXEL P660HN-T v1 Router Unauthenticated Command Injection

TrueOnline is a major ISP in Thailand, and it distributes a customized version of the ZyXEL P660HN-T v1 router. This customized version has an unauthenticated command injection vulnerability in the remote log forwarding page. This module was tested in an emulated environment, as the author doesn'...

IPSwitch IMail Server <= 8.20 IMAPD Remote Buffer Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Ipswitch IMAIL Server IMAPD 7.13 - 8.20 exploit Site : http://www.ipswitch.com Found by : iDEFENSE Security http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=243...

SAP DB 7.x Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/24773/info SAP DB Web Server is prone to multiple buffer-overflow vulnerabilities because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer. Successfully exploitin...

Now SMS/MMS Gateway 5.5 - Remote Buffer Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Now SMS/MMS Gateway v5.5 and others ---------------------------------------- Exploit : Now SMS/MMS Gateway v5.5 Remote Buffer Overflow Exploit Exploit date : 14.04.2008 Exploit writer : Hereti...

How Offensive Research Drives Down the Cost of Attacks

CANCUN–The offensive security research community has evolved in the last decade or so from a relatively small and insular group inwardly focused, to a large and rather vocal group with a wide variety of motives, opinions and skill levels. But, to hear Brad Arkin of Adobe tell it, the huge amount ...

Metasploit Launches Reward Program For Exploits

The team behind the Metasploit Project is launching its own version of a bug bounty program: cash payouts for working exploits. The group is hoping to get explit code for as many of its top 30 vulnerabilities as possible before the program expires later this summer. Metasploit has put together a...

Rapid7 Security Advisory 37

R7-0037: SAP BusinessObjects Axis2 Default Admin Password October 13th, 2010 Description: The SAP BusinessObjects product contains a module dswsbobje.war which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone with access to the Axis2 port...

Exploit Code, List of Apps Vulnerable to DLL Hijacking Hit the Web

The list of applications known to be vulnerable to the Windows DLL-hijacking bug is growing by the hour, with some sites listing more than 30 vulnerable applications right now. A large portion of the known vulnerable apps belong to Microsoft, including PowerPoint 2010 and Microsoft Live Email. On...

Making Penetration Testing Mainstream

HD Moore, the founder of the Metasploit Project and now the CSO of Rapid7, talks at the SOURCE conference in Boston about the mainstream acceptance and importance of penetration testing...

HD Moore on Metasploit, Exploitation and the Art of Pen Testing

Dennis Fisher talks with HD Moore, the founder of the Metasploit Project and the chief security officer at Rapid7, about the evolution of Metasploit, the difficulty of client-side exploitation in the age of DEP and ASLR and the decision on when to publish an exploit. Podcast audio courtesy of...

freeSSHd 1.2.4 - Denial of Service

!/usr/bin/env python """ Exploit Title: FreeSSHD 1.2.4 Remote Buffer Overflow DoS Date: 22-03-2010 Author: Pi3rrot - tagazok At gmail D0t com ak37@freenode Software Link: http://www.freesshd.com/ Version: 1.2.4 Tested on: Windows XP SP3 fr Explications : This pof just may crash FreeSSHD 1.2.4 on...

Ken "Skywing" Johnson joins Microsoft security team

Microsoft has hired yet another well-known security researcher to join its ever-growing team of exploit and defense experts. This time it’s Ken Johnson, known in the hacker world as Skywing. Johnson is known as an expert on debugging and reverse engineering, and has done a tremendous amount of wo...

Now SMSMms Gateway 5.5 - Remote Buffer Overflow

Now SMSMms Gateway 5.5 - Remote Buffer Overflow / Dreatica-FXP crew ---------------------------------------- Target : Now SMS/MMS Gateway v5.5 and others ---------------------------------------- Exploit : Now SMS/MMS Gateway v5.5 Remote Buffer Overflow Exploit Exploit date : 14.04.2008 Exploit...

Now SMS/MMS Gateway 5.5 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ====================================================== Now SMS/MMS Gateway 5.5 Remote Buffer Overflow Exploit ====================================================== / Dreatica-FXP crew ---------------------------------------- Target : Now...

adobealbum-overflow.txt

Exploitable issue in various Adobe products c0ntex [email protected] Scott Laurie February 2008 Vulnerable applications, tested: Adobe Photoshop Album Starter Adobe After Effects CS3 Adobe Photoshop CS3 Not Vulnerable applications, tested: Adobe Reader Adobe Flash Player This bug is related to th...

HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : HP OpenView Network Node Manager v7.5 ---------------------------------------- Exploit : HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Buffer Overflow Exploit...

HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================= HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Overflow Exploit ============================================================= / Dreatica-FXP crew...

hpovalarmsrv-overflow.txt

/ Dreatica-FXP crew ---------------------------------------- Target : HP OpenView Network Node Manager v7.5 ---------------------------------------- Exploit : HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Buffer Overflow Exploit Exploit date : 07.04.2008 Exploit writer : Heretic2 [email protected]...