EGESPLOIT - A Golang Library For Malware Development

EGESPLOIT is a golang library for malware development, it has few unique functions for meterpreter integration. DOCUMENTATION CalculateChecksumx : Function calculates x digit 8 bit checksum for reverse HTTP/HTTPS meterpreter connections, returns the calculated checksum as string...

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode (103 bytes)

Reverse TCP Staged Alphanumeric Shellcode Linux x86 Execve /bin/sh Author: Snir Levi, Applitects 103 Bytes date: 9.2.17 Automatic python shellcode handler with stage preset send will be ready soon: https://github.com/snir-levi/ReverseTCPAlphanumericStagedShellcodeExecve-bin-bash/ IP - 127.0.0.1...

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode (103 bytes)

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode 103 bytes. Shellcode exploit for Linx86 platform Reverse TCP Staged Alphanumeric Shellcode Linux x86 Execve /bin/sh Author: Snir Levi, Applitects 103 Bytes date: 9.2.17 Automatic python shellcode handler with stage preset send will be ready...

Linux - Multi/Dual mode Reverse Shell Shellcode (129 bytes)

Linux - Multi/Dual mode Reverse Shell Shellcode 129 bytes. Shellcode exploit for Linux platform / Copyright © 2017 Odzhan. All Rights Reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1...

Linux/x86 - Multi/Dual mode Reverse Shell Shellcode (129 bytes)

/ Copyright © 2017 Odzhan. All Rights Reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the...

Remote Code Execution (RCE)

ImageMagick is vulnerable to remote code execution RCE attacks. A malicious user can inject and execute arbitrary shellcode by appending a '|' character in front of the filename of the image to be opened...

Linux/x86 - Multi/Dual mode execve ("/bin/sh", NULL, 0) Shellcode (37 bytes)

/ Copyright © 2017 Odzhan. All Rights Reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the...

Linux - Multi/Dual mode execve("/bin/sh", NULL, 0) Shellcode (37 bytes)

Linux - Multi/Dual mode execve"/bin/sh", NULL, 0 Shellcode 37 bytes. Shellcode exploit for Linux platform / Copyright © 2017 Odzhan. All Rights Reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:...

Firefox 50.0.2 after the release reuse vulnerability analysis CVE-2016-9899-a vulnerability warning-the black bar safety net

Author: k0shl reprint please indicate the source author blog:http://whereisk0shl. top Preface Small year has passed, New Year rhythm, give you worship a early years, a Happy New Year! Haven't come across such after the release reuse vulnerability, which vulnerability causes is a very classic...

Linux/x86_64 - execve /bin/sh Shellcode (22 bytes)

;The MIT License MIT ;Copyright c 2017 Robert L. Taylor ;Permission is hereby granted, free of charge, to any person obtaining a ;copy of this software and associated documentation files the “Software”, ;to deal in the Software without restriction, including without limitation ;the rights to use,...

shellcode programming: in memory in the parsing API to address-vulnerability warning-the black bar safety net

For Windows all with position-independent code, PIC core feature is based on a real-time analysis the API function address. It is a very important task. Here I introduce two popular methods, the use of the import address table IAT, and export address table to EAT is by far the most stable method...

Python 2.x Buffer Overflow

!/usr/bin/env python Exploit : Python 2.x Buffer Overflow POC Tested on : Windows XP , Windows 7 Authors : Sultan Albalawi & Chaitanya @bofheaded Discovery date : 21/jan/2017 GitHub : https://github.com/ChaitanyaHaritash/My-Exploits/blob/master/python2.xbof.py Video : https://youtu.be/hcc6Y55PWBg...

Linux/x86_64 - Bind 5600 TCP Port - Shellcode (87 bytes)

Linux/x8664 - Bind 5600 TCP Port - Shellcode 87 bytes. Shellcode exploit for Linx86-64 platform / --------------------------------------------------------------------------------------------------- Linux/x8664 - Bind 5600 TCP Port - shellcode - 87 bytes Ajith Kp http://fb.com/ajithkp560...

Linux/x86_64 - Bind 5600 TCP Port - Shellcode (87 bytes)

/ --------------------------------------------------------------------------------------------------- Linux/x8664 - Bind 5600 TCP Port - shellcode - 87 bytes Ajith Kp http://fb.com/ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa Sad-Gamaya | Tamaso Maa Jyotir-Gamaya | Mrtyor-Maa...

Linux/x86-64 - mkdir Shellcode (25 bytes)

/ --------------------------------------------------------------------------------------------------- Linux/x86x64 - mkdir"ajit", 755 - 25 bytes Ajith Kp http://fb.com/ajithkp560 http://www.terminalcoders.blogspot.com Vishnu Nath Kp http://www.terminalcoders.blogspot.com Sayooj S Nambiar...

PHP LibGD Heap Buffer Overflow

!/usr/bin/env python2 PoC for CVE-2016-3074 targeting Ubuntu 15.10 x86-64 with php5-gd and php5-fpm running behind nginx. ,---- | $ python exploit.py --bind-port 5555 http://1.2.3.4/upload.php | this may take a while | offset 912 of 10000... | + connected to 1.2.3.4:5555 | id | uid=33www-data...

iSelect 1.4 Local Buffer Overflow

Exploit developed using Exploit Pack v7.01 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: iSelect Affected value: -k, --key=KEY Version: 1.4.0-2+b1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description:...

Windows x64 - CreateRemoteThread() DLL Injection Shellcode (584 bytes)

Windows x64 - CreateRemoteThread DLL Injection Shellcode 584 bytes. Shellcode exploit for Winx86-64 platform / Title: Windows x64 dll injection shellcode using CreateRemoteThread Size: 584 bytes Date: 16-01-2017 Author: Roziul Hasan Khan Shifat Tested On : Windows 7 x64 / //Note : i wrtie it for...

DiskBoss Enterprise 7.5.12 - 'POST' Remote Buffer Overflow (SEH)

!/usr/bin/python Exploit Title: DiskBoss Enterprise 7.5.12 SEH + Egghunter Buffer Overflow Date: 10-01-2017 Exploit Author: Wyndell Bibera Software Link: http://www.diskboss.com/setups/diskbossentsetupv7.5.12.exe Version: 7.5.12 Tested on: Windows XP Professional SP3 import socket ip =...

Enigma Fileless UAC Bypass

a This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ Exploit Title : enigmafilelessuacbypass.rb Module...