Malicious code in apple-psh (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 041d9bb86cacaa2662e0692402d62b7779b1bac94c3aa30bd8f329fdbffba6eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in psh-hydra-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e602e73e004aedbd93e2617bee443de236f268346b5b57bd42fcd32669825fd The OpenSSF Package Analysis project identified 'psh-hydra-sdk' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7855 Malicious code in psh-hydra-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e602e73e004aedbd93e2617bee443de236f268346b5b57bd42fcd32669825fd The OpenSSF Package Analysis project identified 'psh-hydra-sdk' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

Discover How Gcore Thwarted Powerful 1.1Tbps and 1.6Tbps DDoS Attacks

The most recent Gcore Radar report and its aftermath have highlighted a dramatic increase in DDoS attacks across multiple industries. At the beginning of 2023, the average strength of attacks reached 800 Gbps, but now, even a peak as high as 1.5+ Tbps is unsurprising. To try and break through...

Malicious code in test-za-sec-psh (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 274d8095ac1a6257a3a7b49fb4660e50a09c61ef646e001eb4ce9025bd773b6b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Polycom HDX Series RCE

When doing external assessments you spend a decent amount of time footprinting your target and finding possible avenues of attack. Given a large corporate, you are pretty likely to hit video conferencing end-points. This post details a vulnerability in one of these video conferencing systems, the...

Script Web Delivery

This module quickly fires up a web server that serves a payload. The module will provide a command to be run on the target machine based on the selected target. The provided command will download and execute a payload using either a specified scripting language interpreter or "squiblydoo" via...

Authenticated WMI Exec Via Powershell

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/powershell' require 'msf/core/post/windows/priv' require 'msf/core/exploit/powershell/dotnet' class MetasploitModule...

SMB Delivery Module

require 'msf/core' require 'msf/core/exploit/powershell' class MetasploitModule "SMB Delivery", 'Description' = %q This module serves payloads via an SMB server and provides commands to retrieve and execute the generated payloads. Currently supports DLLs and Powershell. , 'License' = MSFLICENSE,...

Microsoft Windows Authenticated Powershell Command Execution

This Metasploit module uses a valid administrator username and password to execute a powershell payload using a similar technique to the "psexec" utility provided by SysInternals. The payload is encoded in base64 and executed from the commandline using the -encodedcommand flag. Using this method,...

2^6 TCP Control Bit - Fuzzer (No ECN or CWR)

!/usr/bin/perl 2^6 TCP Control Bit Fuzzer No ECN or CWR This code was written originally as a control bit fuzzer for the JunOS 3-9 crash mentioned in PSN-2010-01-623 and http://www.securityfocus.com/news/11571 However it will also be useful in fuzzing future IP stacks, such as userland IP stacks ...

Stack overflow

Multiple stack-based buffer overflows in Photodex ProShow Gold 4.0.2549 allow remote attackers to execute arbitrary code via a crafted Slideshow project .psh file, related to the 1 celln.imagesm.image and 2 celln.sound.file fields...

ProShow buffer overflow

Buffer overflow on .psh files parsing...

[Bkis-11-2009] ProShow Gold Buffer Overflow Vulnerabilities

Bkis-11-2009 ProShow Gold Buffer Overflow Vulnerabilities 1. General Information ProShow Gold is a software allowing you easily create photo and video slide shows on DVD, PC and Web. Recently, Bkis has just detected vulnerabilities in the software related to the processing of ProShow Slideshow’s...