Lucene search
K

204 matches found

n0where
n0where
added 2018/01/12 7:36 p.m.28 views

Compromising IPv4 Networks via IPv6: mitm6

mitm6 is a pentesting tool that exploits the default configuration of Windows to take over the default DNS server. It does this by replying to DHCPv6 messages, providing victims with a link-local IPv6 address and setting the attackers host as default DNS server. As DNS server, mitm6 will...

0.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2018/01/06 12:0 a.m.209 views

Cisco IOS SNMP Remote Code Execution

!/usr/bin/env python if False: ''' CVE-2017-6736 / cisco-sa-20170629-snmp Cisco IOS remote code execution =================== This repository contains Proof-Of-Concept code for exploiting remote code execution vulnerability in SNMP service disclosed by Cisco Systems on June 29th 2017 - Descriptio...

9CVSS8.6AI score0.70559EPSS
Exploits8
0day.today
0day.today
added 2017/12/22 12:0 a.m.101 views

Cisco IOS 12.2 < 12.4 / 15.0 < 15.6 - Security Association Negotiation Request Device Memory E

Exploit for hardware platform in category remote exploits !/usr/bin/python -- coding: utf8 -- import socket from scapy.all import --------------------------- Requirements: $ sudo pip install scapy --------------------------- conf.verb = 0 RCVSIZE = 2548 TIMEOUT = 6 payload =...

5CVSS7.8AI score0.87687EPSS
Exploits7
Kitploit
Kitploit
added 2017/10/03 1:30 p.m.47 views

habu - Network Hacking Toolkit

Habu is to teach and learn some concepts about Python and Network Hacking. These are basic functions that help with some tasks for Ethical Hacking and Penetration Testing. Most of them are related with networking, and the implementations are intended to be understandable for who wants to read the...

7.2AI score
Exploits0References2
pentestit
pentestit
added 2017/09/06 7:0 a.m.249 views

Z3sec: A ZigBee Penetration Testing Framework

PenTestIT RSS Feed All of us know that ZigBee is an IEEE 802.15.4-based low-power, low data rate, and close proximity wireless ad-hoc network. There is now a tool - Z3sec, that can help you perform penetration tests on a multitude of Internet of Things IoT devices that implement the ZigBee...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2017/08/28 2:11 p.m.23 views

Nili - Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing

Nili is a Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing. Prerequisites Python - Python Programming Language Scapy - Interactive Packet Manipulation Program Netzob - Protocol Reverse Engineering, Modeling and Fuzzing Installing Here is some Instructions for...

7.3AI score
Exploits0References4
exploitpack
exploitpack
added 2017/08/23 7:49 p.m.15 views

127.0.0.1

A remote administration tool a RAT is a piece of software that allows a remote "operator" to control a system as if he has physical access to that system. While desktop sharing and remote administration have many legal uses, "RAT" software is usually associated with criminal or malicious activity...

0.4AI score
Exploits0
Kitploit
Kitploit
added 2017/08/16 2:24 p.m.31 views

PiSavar - Detects PineAP Module and Starts Deauthentication Attack (for fake access points)

The goal of this project is to find out the fake access points opened by the WiFi pineapple device using the PineAP module and to prevent clients from being affected by initiating a deauthentication attack to the attacking device. How PineAP Module Works Collects SSID information Creates SSID poo...

7AI score
Exploits0References1
seebug.org
seebug.org
added 2017/08/04 12:0 a.m.30 views

SMBLoris Denial Of Service

There's a lot of talk about SMBLoris but nobody seems to have written a public efficient PoC yet, so I gave it a shot. A single instance takes down a fully patched Windows 10 Pro box with 8GiB of RAM in less than 10 seconds. I tried using Scapy initially, but it's dog slow, so I went with C. The...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2017/05/15 3:30 p.m.34 views

NETATTACK 2 - An Advanced Wireless Network Scan and Attack Script

NETATTACK 2 is a python script that scans and attacks local and wireless networks. Everything is super easy because of the GUI that makes it unnecessary to remember commands and parameters. FUNCTIONS SCAN-FUNCTIONS Scan for Wi-Fi networks Scan for local hosts in your network ATTACK-FUNCTIONS...

7.2AI score
Exploits0References1
exploitpack
exploitpack
added 2017/04/04 12:0 a.m.15 views

Broadcom Wi-Fi SoC - dhd_handle_swc_evt Heap Overflow

Broadcom Wi-Fi SoC - dhdhandleswcevt Heap Overflow Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1061 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capab...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/04/04 12:0 a.m.73 views

Broadcom Wi-Fi SoC - &#039;dhd_handle_swc_evt&#039; Heap Overflow

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1061 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capable of handling many Wi-Fi related events without...

7.4AI score
Exploits0
n0where
n0where
added 2017/03/31 6:22 a.m.105 views

DHCP Exhaustion Script: DHCPig

DHCP Exhaustion Script DHCPig initiates an advanced DHCP exhaustion attack. It will consume all IPs on the LAN, stop new users from obtaining IPs, release any IPs in use, then for good measure send gratuitous ARP and knock all windows hosts offline. It requires scapy =2.1 library and admin...

7.1AI score
Exploits0References1
exploitpack
exploitpack
added 2017/03/17 12:0 a.m.69 views

Cisco IOS 12.2 12.4 15.0 15.6 - Security Association Negotiation Request Device Memory

Cisco IOS 12.2 12.4 15.0 15.6 - Security Association Negotiation Request Device Memory !/usr/bin/python -- coding: utf8 -- import socket from scapy.all import --------------------------- Requirements: $ sudo pip install scapy --------------------------- conf.verb = 0 RCVSIZE = 2548 TIMEOUT = 6...

5CVSS1.5AI score0.87687EPSS
Exploits7
Exploit DB
Exploit DB
added 2017/03/17 12:0 a.m.82 views

Cisco IOS 12.2 &lt; 12.4 / 15.0 &lt; 15.6 - Security Association Negotiation Request Device Memory

!/usr/bin/python -- coding: utf8 -- import socket from scapy.all import --------------------------- Requirements: $ sudo pip install scapy --------------------------- conf.verb = 0 RCVSIZE = 2548 TIMEOUT = 6 payload = '5\xc7\x07\xdf\xed\xef\x00\x00\x00\x00\x00\x00\x00\x00\x01\x10\x02' payload +=...

7.5CVSS7.8AI score0.87687EPSS
Exploits7
Kitploit
Kitploit
added 2017/02/08 2:30 p.m.21 views

Smith - A Very Quick And Very Dirty Client/Server Tool For Testing Firewalls

A client/server style agent meant for testing connectivity to and from a machine on a network. Installation python setup.py install or pip install . should install smith. Note: If you want to use the tcp/udp protocol options, you'll need to install scapy and it's dependencies. Ubuntu has 'apt-get...

7.3AI score
Exploits0References1
n0where
n0where
added 2016/12/07 5:52 a.m.26 views

Powerful Extensible Wireless Drop Box: Pina Colada

Powerful Extensible Wireless Drop Box Pina Colada, a powerful and extensible wireless drop box, capable of performing a wide range of remote offensive attacks on a network. It can currently be controlled only via a command line interface, but a Command and Control remote server functionality is...

0.3AI score
Exploits0References2
Kitploit
Kitploit
added 2016/11/16 2:0 p.m.17 views

creak - Poison, Reset, Spoof, Redirect MITM Script

Performs some of the most famous MITM attack on target addresses located in a local network. Among these, deny navigation and download capabilities of a target host in the local network performing an ARP poison attack and sending reset TCP packets to every request made to the router. Born as a...

7.1AI score
Exploits0References1
n0where
n0where
added 2016/05/09 12:1 a.m.208 views

IDS IPS Testing Framework: pytbull

pytbull is an Intrusion Detection/Prevention System IDS/IPS Testing Framework for Snort, Suricata and any IDS/IPS that generates an alert file. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to...

0.9AI score
Exploits0
Kitploit
Kitploit
added 2016/02/20 6:30 p.m.30 views

Smod - MODBUS Penetration Testing Framework

smod is a modular framework with every kind of diagnostic and offensive feature you could need in order to pentest modbus protocol. It is a full Modbus protocol implementation using Python and Scapy. This software could be run on Linux/OSX under python 2.7.x. Feel free to make pull requests, if...

7.6AI score
Exploits0References1
Rows per page
Query Builder