[Video+Pdf] Android No-Permissions Reverse Shell

Достаточно объемная презентация с дефкона: http://www.defcon.org/images/defcon-...ooking-For.pdf Демо-видео от ViaForensics: Дамп настроек, листинг директорий- все включено. Тема актуальна для андроидов начиная 1.5 до 4.0...

Sqlninja 0.2.6 is now available

Sqlninja 0.2.6 is now available Sqlninja's goal is to exploit SQL injection vulnerabilities on web applications that use Microsoft SQL Server as back end. It is released under the GPLv3.There are a lot of other SQL injection tools out there but sqlninja, instead of extracting the data, focuses on...

JBoss & JMX Console - Misconfigured Deployment Scanner

!/usr/bin/perl Exploit Title: JBoss, JMX Console, misconfigured DeploymentScanner Date: Oct 3 2011 Author: y0ug codsec.com Version: Tested on: Linux CVE : CVE-2010-0738 POC against misconfigured JBoss JMX Console It use the addUrl method in DeploymentScanner module More information...

winAUTOPWN v2.7 – Windows Autohacking Tool

winAUTOPWN v2.7 – Windows Autohacking Tool This version covers almost all remote exploits up-till mid-July 2011 and a few older ones as well. This version incorporates a few new commandline parameters: -perlrevshURL for a PERL Reverse Shell URL, – mailFROM smtpsender and -mailTO smtpreceiver. The...

EC-Council Academy Hacked by GaySec (Malaysian hackers)

EC-Council Academy Hacked byGaySec Malaysian hackers EC-Council Academy https://eccouncilacademy.org Hacked by GaySec Malaysian hackers. EC-Council Academy is a separate distinct company with no corporate connection between itself and EC-Council or EC-Council University. Some months before same...

Litespeed Web Server 4.0.17 with PHP (FreeBSD) - Remote Overflow

Litespeed Web Server 4.0.17 with PHP FreeBSD - Remote Overflow LiteSpeed Web Server 4.0.17 w/ PHP Remote Exploit for FreeBSD bug discovered & exploited by Kingcope Dec 2010 Lame Xploit Tested with success on FreeBSD 8.0-RELEASE - LiteSpeed WebServer 4.0.17 Standard & Enterprise x86 FreeBSD...

Researcher Publishes Android Browser Exploit

UPDATE: A researcher at security firm Alert Logic has published code that could be used to compromise some versions of Google’s Android Operating System. The exploit, if properly adapted, could make Android phones vulnerable to remote attacks and compromises. Researcher MJ Keith published a Rever...

Android 2.0-2.1 Reverse Shell Exploit

Exploit for Android platform in category remote exploits ===================================== Android 2.0-2.1 Reverse Shell Exploit ===================================== // bug = webkit code execution CVE-2010-1807 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1807 // listed as a safari...

Android 2.0-2.1 Reverse Shell Exploit

No description provided by source. html head script // bug = webkit code execution CVE-2010-1807 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1807 // listed as a safari bug but also works on android : //tested = moto droid 2.0.1 , moto droid 2.1 , emulater 2.0 - 2.1 //patched= android 2...

Google Android 2.0 < 2.1 - Code Execution (Reverse Shell 10.0.2.2:2222/TCP)

// bug = webkit code execution CVE-2010-1807 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1807 // listed as a safari bug but also works on android : //tested = moto droid 2.0.1 , moto droid 2.1 , emulater 2.0 - 2.1 //patched= android 2.2 //author = mj // hardcoded to return a shell to...

Reverse Shell Applet

Added: 10/10/2010 Background This tool runs an exploit server which delivers a signed java applet, embedded in an HTML page, to the target hosts. The user is presented with a signed digital certificate which, when accepted, establishes a reverse shell connection back to the exploit server. Proble...

Sun Java - Calendar Deserialization (Metasploit)

$Id: javacalendardeserialize.rb 10389 2010-09-20 04:38:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Oracle XDB FTP Service UNLOCK Buffer Overflow

vulnerabilities network level/stack based buffer overflow + special network layer attack + implemented over http/XML-db/ftp==windows XDB + connecting:8080 = operation: win 32--xdb overflow + author mc2s3lector + yogyacarderlink.web.id/KeDai Computerworks.com exploit win32 include include include...

Orbital Viewer 1.04 SEH Overflow

!/usr/bin/python sinn3r: I'm just submitting this for mrme Orbital Viewer v1.04 .orb 0day Local Universal SEH Overflow Exploit Date: 27 Feb 2010 CVE: CVE-2010-0688 Download: http://www.orbitals.com/orb/ov.htm Found & exploited by: mrme http://net-ninja.net Greetz to:...

Orbital Viewer v1.04 (.orb) 0day Local Universal SEH Overflow Exploit

Exploit for unknown platform in category local exploits ===================================================================== Orbital Viewer v1.04 .orb 0day Local Universal SEH Overflow Exploit ===================================================================== !/usr/bin/python Orbital Viewer...

Internet Explorer 6 Web Server Exploit

Author : Ahmed Obied [email protected] Modify by: syniack [email protected] This program acts as a web server that generates an exploit to target a vulnerability CVE-2010-0249 in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP3. The exploit's payload...

Quick Player 1.2 - Unicode Buffer Overflow (1)

!/usr/bin/python Vulnerability : Quick Player v1.2 unicode buffer overflow exploit coded by : mrme reference : http://www.exploit-db.com/exploits/10759 corelanc0d3r Tested on : XP SP3 En VirtualBox Greetz to : Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT mrme@backtrack:$ nc -lvp...

Quick Player 1.2 Unicode Buffer Overflow

!/usr/bin/python Vulnerability : Quick Player v1.2 unicode buffer overflow exploit coded by : mrme reference : http://www.exploit-db.com/exploits/10759 corelanc0d3r Tested on : XP SP3 En VirtualBox Greetz to : Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT mrme@backtrack:$ nc -lvp...

Quick Player v1.2 Unicode Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ================================================= Quick Player v1.2 Unicode Buffer Overflow Exploit ================================================= Title: Quick Player v1.2 Unicode Buffer Overflow Exploit CVE-ID: OSVDB-ID: Author: mrme...

Dokeos LMS <= 1.8.5 (whoisonline.php) PHP Code Injection Exploit

Exploit for unknown platform in category web applications ================================================================ Dokeos LMS = 1.8.5 whoisonline.php PHP Code Injection Exploit ================================================================ ?php /...