BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits !/usr/bin/env ruby Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Dec 03 2014 Vulnerability Discovery: Gabor Seljan Exploit Author: Muhamad Fadzil Ramli Software Link: http://www.bpftp.com/ Version: 2010.75.0....

BulletProof FTP Client 2010 - Local Buffer Overflow (SEH)

!/usr/bin/env ruby Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Dec 03 2014 Vulnerability Discovery: Gabor Seljan Exploit Author: Muhamad Fadzil Ramli Software Link: http://www.bpftp.com/ Version: 2010.75.0.76 Tested on: Microsoft Windows XP SP3 EN Version 5.1.26...

DCOM the front of the pass to kill the vulnerability ms03-0 4 3 The use of code-vulnerability warning-the black bar safety net

Because you can go udp135 and UDP1024 more than one dynamic port, when many engage in an APT opening-day network firewall-black ice the white list of the machine is also easy to get. I often say that the inside of that MSG vulnerabilities. Aware of the RPC of the importance of after, a series of...

Microsoft Internet Explorer OLE Pre-IE11 - Automation Array Remote Code Execution PowerShell VirtualAlloc (MS14-064)

Microsoft Internet Explorer OLE Pre-IE11 - Automation Array Remote Code Execution PowerShell VirtualAlloc MS14-064 |--------------------------------------------------------------------------| | Title: OLE Automation Array Remote Code Execution = Pre IE11 | | Original Exploit: yuange -...

MeterSSH - Meterpreter over SSH

As penetration testers, it’s crucial to identify what types of attacks are detected and what’s not. After running into a recent penetration test with a next generation firewall, most analysis has shifted away from the endpoints and more towards network analysis. While there needs to be a mixture ...

Meterpreter over SSH – MeterSSH

Meterpreter over SSH As penetration testers, it’s crucial to identify what types of attacks are detected and what’s not. After running into a recent penetration test with a next generation firewall, most analysis has shifted away from the endpoints and more towards network analysis. While there...

Internet Explorer 8 MS14-035 Use-After-Free Exploit

影响平台： Windows Server 2003 Service Pack 2 Windows Vista Service Pack 2 Windows Server 2008 Service Pack 2 Windows 7 Service Pack 1 Windows Server 2008 R2 Service Pack 1 漏洞简介： 这个漏洞是由TrendLabs私下发给微软，并且成为微软14年6月份补丁，编号MS14-035。尽管这个漏洞已经修复，这是个值得学习的UAF案例。 触发这个漏洞的POC如下： !-- Exploit Title: MS14-035...

Immunity Canvas: MS14_064_IE_OLEAUT32

Name| ms14064ieoleaut32 ---|--- CVE| CVE-2014-6332 Exploit Pack| CANVAS Description| MS14064 - Windows OLE Automation Array Remote Code Execution Vulnerability Notes| CVE Name: CVE-2014-6332 VENDOR: Microsoft NOTES: References:...

Position independent & Alphanumeric 64-bit execve("/bin/sh\0",NULL,NULL); - 87 Byte

87 bytes small position independent and alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; shellcode. Title: Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes Author: Breaking.Technology Date: 06 November 2014 Vendor Homepage: http://breaking.technology Version: x86-6...

Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes

Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes. Shellcode exploit for linux platform Title: Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes Author: Breaking.Technology Date: 06 November 2014 Vendor Homepage:...

Linux/x86-64 - Add Map (127.1.1.1 google.lk) In /etc/hosts Shellcode (110 bytes)

Linux/x86-64 - Add Map 127.1.1.1 google.lk In /etc/hosts Shellcode 110 bytes. Shellcode exploit for Linuxx86-64 platform / ; Title: Add map in /etc/hosts file - 110 bytes ; Date: 2014-10-29 ; Platform: linux/x8664 ; Website: http://osandamalith.wordpress.com ; Author: Osanda Malith Jayathissa...

Asx to Mp3 2.7.5 - Stack Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: ASX to MP3 Converter 2.7.5 stack buffer overflow Date: 6 Oct 2014 Exploit Author: Amir Reza Tavakolian Vendor Homepage: http://binarylife.blog.ir/ Software Link:...

Asx To MP3 2.7.5 Stack Buffer Overflow

Exploit Title: ASX to MP3 Converter 2.7.5 stack buffer overflow Date: 6 Oct 2014 Exploit Author: Amir Reza Tavakolian Vendor Homepage: http://binarylife.blog.ir/ Software Link: http://download.cnet.com/ASX-to-MP3-Converter/3000-21684-10385919.html Version: 2.7.5 Tested on: windows xp sp 3 Special...

Linux/x86 - Add map in /etc/hosts file

Linux/x86 - Add map in /etc/hosts file. Shellcode exploit for linx86 platform / ;modifyhosts.asm ;this program add a new entry in hosts file pointing google.com to 127.1.1.1 ;author Javier Tejedor ;date 24/09/2014 global start section .text start: xor ecx, ecx mul ecx mov al, 0x5 push ecx push...

Linux/x86-64 - Add Root User (shell-storm/leet) + Polymorphic Shellcode (273 bytes)

Linux/x86-64 - Add Root User shell-storm/leet + Polymorphic Shellcode 273 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; "Polymorphic" version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-658.php ;...

BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit

No description provided by source. !/usr/bin/python ----------------------------------------------------------------------------- Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Sep 05 2014 Vulnerability Discovery: Gabor Seljan Exploit Author: Robert Kugler Software...

Connect Back 139 bytes

Connect Back 139 bytes. Shellcode exploit for linux platform / Title: connect back shellcode that splits from the process it was injected into, and then stays persistent and difficult to remove. It is also very close to invisible due to some interesting effects created by forking, and calling the...

Linux/x86-64 - shutdown -h now Shellcode (64 bytes)

Linux/x86-64 - shutdown -h now Shellcode 64 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; Optimized version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-877.php ; Author: SLAE64-1351 Keyman ; Date:...

Linux/x86-64 - Read /etc/passwd + Write To /tmp/outfile Shellcode (105 bytes)

Linux/x86-64 - Read /etc/passwd + Write To /tmp/outfile Shellcode 105 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; Optimized version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-867.php ; Author:...

Obfuscated Shellcode Linux x86 - chmod 777 /etc/passwd + /etc/shadow & Add New Root User & Execute /bin/bash

Obfuscated Shellcode Linux x86 - chmod 777 /etc/passwd + /etc/shadow & Add New Root User & Execute /bin/bash. Shellcode exploit for linux platform / Title: Obfuscated Shellcode Linux x86 chmod777 /etc/passwd and /etc/shadow && Add new root user ALI with password ALI for ssh && Setreuid , Execute...