4113 matches found
Trojan/Backdoor Detection - RXBOT / RBOT Vulnerability Scan
Binary data 6228.prm...
Exploit for Asterisk Security Advisory AST-2011-013
A Metasploit module is attached that demonstrates how to enumerate Asterisk sip peers that have a nat setting different to the global sip nat setting as described in Asterisk Security Advisory AST-2011-013. The example below finds all peers with nat=yes, but the metasploit module will also work...
SIP Username Enumerator For Asterisk
require 'msf/core' class Metasploit3 'SIP Username Enumerator for Asterisk UDP Security Advisory AST-2011-013, CVE-2011-4597', 'Version' = '$Revision: 1 $', 'Description' = 'REGISTER scan for numeric peer usernames having a nat setting different to global sip nat setting. ' 'Ben Williams',...
broadcast-wake-on-lan NSE Script
Wakes a remote system up from sleep by sending a Wake-On-Lan packet. Script Arguments broadcast-wake-on-lan.address The broadcast address to which the WoL packet is sent. broadcast-wake-on-lan.MAC The MAC address of the remote system to wake up Example Usage nmap --script broadcast-wake-on-lan...
Fully Undetectable Backdoor generator for Metasploit
Fully Undetectable Backdoor generator for Metasploit Security Labs Experts from Indian launch an automated Anti-Virus and Firewall Bypass Script. Its an Modified and Stable Version in order to work with Backtrack 5 distro. Below you can find the modified version and a simple presentation on how i...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Virus Scan Interface in SAP Netweaver allow remote attackers to inject arbitrary web script or HTML via the 1 instname parameter to the VsiTestScan servlet and 2 name parameter to the VsiTestServlet servlet...
CVE-2011-4707
CVE-2011-4707 involves multiple cross-site scripting (XSS) vulnerabilities in the SAP NetWeaver Virus Scan Interface. The flaws allow remote attackers to inject arbitrary web script or HTML via the following parameters: (1) instname to VsiTestScan servlet and (2) name to VsiTestServlet servlet. A...
CVE-2011-4707
Multiple cross-site scripting XSS vulnerabilities in the Virus Scan Interface in SAP Netweaver allow remote attackers to inject arbitrary web script or HTML via the 1 instname parameter to the VsiTestScan servlet and 2 name parameter to the VsiTestServlet servlet...
vuze-dht-info NSE Script
Retrieves some basic information, including protocol version from a Vuze filesharing node. As Vuze doesn't have a default port for its DHT service, this script has some difficulties in determining when to run. Most scripts are triggered by either a default port or a fingerprinted service. To get...
OpenVAS Scanner Detection
An OpenVAS Scanner daemon is listening on the remote port. This is the component of OpenVAS that performs security scans and / or audits. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid56823; scriptversion"1.4";...
reverse-index NSE Script
Creates a reverse index at the end of scan output showing which hosts run a particular service. This is in addition to Nmap's normal output listing the services on each host. Script Arguments reverse-index.mode the output display mode, can be either horizontal or vertical default: horizontal...
unusual-port NSE Script
Compares the detected service on a port against the expected service for that port number e.g. ssh on 22, http on 80 and reports deviations. The script requires that a version scan has been run in order to be able to discover what service is actually running on each port. Example Usage nmap...
Acunetix Web Vulnerability Scanner 8 BETA Released
Acunetix Web Vulnerability Scanner 8 BETA Released The next stage in the evolution of Acunetix Web Vulnerability Scanner has arrived — WVS 8 BETA! Many of you have been biting their nails in anticipation of this Beta, so sit tight and read on for the next most important stage in the evolution of...
Acunetix Web Vulnerability Scanner 8 BETA Released
Acunetix Web Vulnerability Scanner 8 BETA Released The next stage in the evolution of Acunetix Web Vulnerability Scanner has arrived — WVS 8 BETA! Many of you have been biting their nails in anticipation of this Beta, so sit tight and read on for the next most important stage in the evolution of...
PalmOS Mobile Device Version Detection (deprecated)
Binary data 6084.prm...
eEye Retina audit script could execute untrusted programs as root
Overview eEye Retina audit scripts have the capability to run remote shell scripts in order to determine vulnerable applications. One audit script in particular audit ID 2499 uses find1 and execute -exec when assessing a vulnerability within Gauntlet Firewall. An attacker who can write an...
Multi Gather DNS Service Record Lookup Scan
Enumerates known SRV Records for a given domain using target host DNS query tool. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather DNS Service Record Lookup Scan', 'Description' = %...
Multi Gather DNS Reverse Lookup Scan
Performs DNS reverse lookup using the OS included DNS query command. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather DNS Reverse Lookup Scan', 'Description' = %q Performs DNS rever...
Apache mod_proxy Reverse Proxy Exposure Vulnerability PoC
No description provided by source. !/usr/bin/env python import socket import string import getopt, sys knownports = 0,21,22,23,25,53,69,80,110,137,139,443,445,3306,3389,5432,5900,8080 def sendrequesturl, apachetarget, apacheport, internaltarget, internalport, resource: get = "GET " + url + "@" +...
Apache mod_proxy - Reverse Proxy Exposure
!/usr/bin/env python import socket import string import getopt, sys knownports = 0,21,22,23,25,53,69,80,110,137,139,443,445,3306,3389,5432,5900,8080 def sendrequesturl, apachetarget, apacheport, internaltarget, internalport, resource: get = "GET " + url + "@" + internaltarget + ":" + internalport...