5626 matches found
sobexsrv 1.0.0_pre3 Bluetooth - 'syslog()' Remote Format String
!/usr/bin/perl trifinite.group Bluetooth sobexsrv remote syslog exploit code by kflistsatdigitalmunitiondotcom http://www.digitalmunition.com Shouts to my nigga Chung and the Donut Shop... keep fighting that SARS dude! Big ups to d4yj4y beeeeeeeeeeeeeotch! $retloc = 0x8053418; Due to unicode the...
netbsd/x86 callback shellcode (port 6666) 83 bytes
No description provided by source. / minervini at neuralnoise dot com c 2005 NetBSD/i386 2.0, callback shellcode port 6666; / include sys/types.h include stdio.h include string.h char scode = "\x31\xc0" // xor %eax,%eax "\x31\xc9" // xor %ecx,%ecx "\x50" // push %eax "\x40" // inc %eax "\x50" //...
netbsd/x86 callback shellcode (port 6666) 83 bytes
Exploit for netbsd/x86 platform in category shellcode ================================================== netbsd/x86 callback shellcode port 6666 83 bytes ================================================== / minervini at neuralnoise dot com c 2005 NetBSD/i386 2.0, callback shellcode port 6666; /...
QNX RTOS 6.3.0 (phgrafx) Local Buffer Overflow Exploit (x86)
Exploit for QNX platform in category local exploits ============================================================ QNX RTOS 6.3.0 phgrafx Local Buffer Overflow Exploit x86 ============================================================ / email protected c 2005, all rights reserved. sample exploit for...
solaris/sparc setreuid/execve 56 bytes
solaris/sparc setreuid/execve 56 bytes. Shellcode exploit for solarissparc platform / [email protected] setreuid shellcode full description of how it was done and defines at http://www.telegenetic.net/sparc-shellcode.htm / char shellcode = "\x90\x1A\x40\x09" / xor %o1, %o1, %o0 /...
solaris/sparc portbind (port 6666) 240 bytes
No description provided by source. / [email protected] portbind shellcode full description of how it was done and defines at http://www.telegenetic.net/sparc-shellcode.htm / char shellcode= "\x9A\x1A\x40\x09" / xor %o1, %o1, %o5 / "\x90\x10\x20\x02" / mov PFINET, %o0 / "\x92\x10\x20\x02" / mo...
solaris/sparc setreuid/execve 56 bytes
Exploit for solaris/sparc platform in category shellcode ====================================== solaris/sparc setreuid/execve 56 bytes ====================================== / email protected setreuid shellcode full description of how it was done and defines at...
solaris/sparc portbind (port 6666) 240 bytes
Exploit for solaris/sparc platform in category shellcode ============================================ solaris/sparc portbind port 6666 240 bytes ============================================ / email protected portbind shellcode full description of how it was done and defines at...
freeFTPd 1.0.8 - 'USER' Remote Buffer Overflow
/ . \ \ \ \ | | / | | | | \ / / /\ \ / \ | \ / / / / 26\09\05 / || / / i Title: FreeFTPD Remote USER Buffer overflow i Discovered by: barabas mutsonline i Exploit by: Expanders Why FTPD crash? When logging option is enabled freeftpd copy the user and the pass supplied by the user in the...
Create Windows own ShellCode-exploit warning-the black bar safety net
In order to help beginners to understand the ShellCode to write, and can step by step get your own ShellCode, so the Windows ShellCode writing process for a detailed description, in order to facilitate as I like the rookie, the final to be able to write a simple but a real ShellCode; and further...
linux/PPC/x86 execve("/bin/sh",{"/bin/sh",NULL},NULL) 99 bytes
Exploit for multiple platform in category shellcode ============================================================== linux/PPC/x86 execve"/bin/sh","/bin/sh",NULL,NULL 99 bytes ============================================================== / - dual-linux.c - by email protected ripped from...
linux/PPC/x86 execve(""/bin/sh"" {""/bin/sh"" NULL} NULL) 99 bytes
No description provided by source. / - dual-linux.c - by [email protected] ripped from [email protected] ^-- much 3 brotha ; execve"/bin/sh","/bin/sh",NULL,NULL shellcode for linux both the ppc and x86 version. I thought about adding mipsel but I don't feel up to it at the moment. In fact I fee...
os-x/PPC/x86 execve("/bin/sh",{"/bin/sh",NULL},NULL) 121 bytes
Exploit for multiple platform in category shellcode ============================================================== os-x/PPC/x86 execve"/bin/sh","/bin/sh",NULL,NULL 121 bytes ============================================================== / - dual.c - by email protected...
os-x/PPC/x86 execve"/bin/sh",{"/bin/sh",NULL},NULL 121 bytes
os-x/PPC/x86 execve"/bin/sh","/bin/sh",NULL,NULL 121 bytes. Shellcode exploits for multiple platform / - dual.c - by [email protected] execve"/bin/sh","/bin/sh",NULL,NULL shellcode for osx both the ppc and x86 version. Sample output: -nemo@squee:/shellcode$ file dual-ppc dual-ppc: Mach-O...
os-x/PPC/x86 execve(""/bin/sh"" {""/bin/sh"" NULL} NULL) 121 bytes
No description provided by source. / - dual.c - by [email protected] execve"/bin/sh","/bin/sh",NULL,NULL shellcode for osx both the ppc and x86 version. Sample output: -nemo@squee:/shellcode$ file dual-ppc dual-ppc: Mach-O executable ppc -nemo@squee:/shellcode$ ./dual-ppc sh-2.05b$ exit...
Veritas Storage Foundation 4.0 - VCSI18N_LANG Local Overflow
!/usr/bin/perl -w Veritas Storage Foundation 4.0 http://www.digitalmunition.com kf kflistsatdigitalmunitiondotcom - 08/19/2005 This bug has not been patched as of: Q14438H.sf.4.0.00.0.rhel3i686.tar.gz Make sure you don't get your sploits from some Frenchie at FR-SIRT go to milw0rm instead. $retva...
linux/mips - execve /bin/sh 56 bytes
linux/mips execve /bin/sh 56 bytes. Shellcode exploit for linuxmips platform / 56 bytes execve /bin/sh shellcode - linux-mipsel - by core [email protected] Note: For MIPS running in little-endian mode. Tested on a Cobalt Qube2 server running Linux 2.4.18 Greetz to bighawk... i couldn't get his exec...
linux/ppc execve /bin/sh 60 bytes
Exploit for linux/ppc platform in category shellcode ================================= linux/ppc execve /bin/sh 60 bytes ================================= / execve-core.c by Charles Stevenson / char hellcode = / execve /bin/sh linux/ppc by core / // Sometimes you can comment out the next line if...
gpsdrive-ex-long-ppc.pl.txt
!/usr/bin/perl -w Heh - Code by KF kflistsatdigitalmunitiondotcom - Shellcode by Charles Stevenson http://www.digitalmunition.com FrSIRT 24/24 & 7/7 - Centre de Recherche on Donkey Testicles. Free 14 day Testicle licking trial available! IIIIIIIIII I::::::::I I::::::::I II::::::II I::::I I::::I...
gpsdrive-ex-short-x86.pl.txt
!/usr/bin/perl -w Code by KF, although it is most likely ripped from John H. kflistsatdigitalmunitiondotcom http://www.digitalmunition.com FrSIRT 24/24 & 7/7 - Centre de Recherche on Donkey Testicles. Free 14 day Testicle licking trial available! friendsd.c:367: fprintf stderr, txt; Tested on int...