1829 matches found
Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems
Threat actors are using an open-source rootkit called Reptile to target Linux systems in South Korea. "Unlike other rootkit malware that typically only provide concealment capabilities, Reptile goes a step further by offering a reverse shell, allowing threat actors to easily take control of...
Kolibri 2.0 Buffer Overflow
!/usr/bin/python3 Exploit Title: Kolibri GET request buffer Overflow Stack Egghunter Date: 2 Augst 2023 Exploit Author: Mahmoud NourEldin @Engacker Vendor App: https://www.exploit-db.com/apps/4d4e15b98e105facf94e4fd6a1f9eb78-Kolibri-2.0-win.zip Version: Kolibri 2.0 Tested on: Windows 10...
Exploit for CVE-2023-38646
Poc-Metabase-Preauth-CVE-2023-38646 Ho to use? λ cve git...
Exploit for CVE-2023-38646
Poc-Metabase-Preauth-CVE-2023-38646 Ho to use? λ cve git...
Exploit for CVE-2023-38646
Poc-Metabase-Preauth-CVE-2023-38646 Ho to use? λ cve git...
Exploit for CVE-2023-38646
Metabase Pre Authentication RCE CVE-2023-38646 We have pro...
pyFUD - Multi Clients FUD Reverse Shell
python3 based multi clients reverse shell. Warning: 1. Don't Upload Any Payloads To VirusTotal.com Bcz This tool will not work with Time. 2. Virustotal Share Signatures With AV Comapnies. 3. Again Don't be an Idiot! Installation: 1. git clone https://github.com/machine1337/pyFUD 2. python3...
Exploit for Code Injection in Apache Airflow
Apache Airflow official report description says: A vulnerab...
Exploit for Classic Buffer Overflow in Extremenetworks Iq_Engine
CVE-2023-35803 - Unauthenticated RCE in Extreme Networks/Aer...
Exploit for Improper Initialization in Linux Linux_Kernel
CVE-2022-0847-Exploit-Implementation This is a POC showing ho...
Exploit for Path Traversal in Icinga Icinga_Web_2
Icinga Web 2 - Authenticated Remote Code Execution 2.8.6, 2.9...
FuguHub 8.1 - Remote Code Execution Exploit
Exploit Title: FuguHub 8.1 - Remote Code Execution Date: 6/24/2023 Exploit Author: redfire359 Vendor Homepage: https://fuguhub.com/ Software Link: https://fuguhub.com/download.lsp Version: 8.1 Tested on: Ubuntu 22.04.1 CVE : CVE-2023-24078 import requests from bs4 import BeautifulSoup import...
Exploit for OS Command Injection in Cacti
Cacti v1.2.24 authenticated command injection CVE-2023-39362...
Exploit for OS Command Injection in Easynas
CVE-2023-0830: EasyNAS 1.1.0 Authenticated OS Command Injectio...
Exploit for Path Traversal in Microsoft
CVE-2022-4510-Binwalk This script allows you to generate expl...
Exploit for Improper Input Validation in Barracuda Email_Security_Gateway_300_Firmware
CVE-2023-2868: Barracuda ESG Command Injection For full...
Chinese UNC4841 Group Exploits Zero-Day Flaw in Barracuda Email Security Gateway
A suspected China-nexus threat actor dubbed UNC4841 has been linked to the exploitation of a recently patched zero-day flaw in Barracuda Email Security Gateway ESG appliances since October 2022. "UNC4841 is an espionage actor behind this wide-ranging campaign in support of the People's Republic o...
GodPotato - Local Privilege Escalation Tool From A Windows Service Accounts To NT AUTHORITY\SYSTEM
Based on the history of Potato privilege escalation for 6 years, from the beginning of RottenPotato to the end of JuicyPotatoNG, I discovered a new technology by researching DCOM, which enables privilege escalation in Windows 2012 - Windows 2022, now as long as you have "ImpersonatePrivilege"...
New GobRAT Remote Access Trojan Targeting Linux Routers in Japan
Linux routers in Japan are the target of a new Golang remote access trojan RAT called GobRAT. "Initially, the attacker targets a router whose WEBUI is open to the public, executes scripts possibly by using vulnerabilities, and finally infects the GobRAT," the JPCERT Coordination Center JPCERT/CC...
Exploit for Code Injection in Vmware Spring_Cloud_Function
Exploit for RCE in Spring Cloud CVE 2022-22963 Exploit for...