5626 matches found
Windows/x86 - Download With TFTP And Execute Shellcode (Generator) (51-60 bytes)
!/bin/python Author: Semen Alexandrovich Lyhin. https://www.linkedin.com/in/semenlyhin/ This script generates x86 shellcode to download and execute .exe file via tftp. File name should be equal to: "1.exe" Lenght: 51-56 bytes, zero-free. import sys def GetOpcodesip,addr: command = r"tftp -i " + i...
Ayukov NFTP FTP Client 2.0 - Buffer Overflow Exploit
Exploit for windows platform in category local exploits Exploit Title: Ayukov NFTP FTP Client 2.0 - Buffer Overflow Exploit Author: Uday Mittal Vendor Homepage: http://www.ayukov.com/nftp/ Software Link: ftp://ftp.ayukov.com/pub/src/nftp-1.72.zip Version : below 2.0 Tested on: Microsoft Windows X...
Linux/x64 - Disable ASLR Security Shellcode (93 Bytes)
/ ASLR Address Space Layout Randomization Disable Shellcode Language C & ASM - Linux/x8664 Author : Kağan Çapar contact: email protected shellcode len : 93 bytes compilation: gcc -fno-stack-protector -z execstack .c -o Test: run shellcode ./aslr etc. check : cat /proc/sys/kernel/randomizevaspace...
Linux/x86 - Kill All Processes Shellcode (14 bytes)
Exploit Title: Linux/x86 - Kill All Processes Shellcode 14 bytes Exploit Author: strider Vendor Homepage: None Software Link: None Tested on: Debian 9 Stretch i386/ Kali Linux i386 CVE : None Shellcode Length: 14 Description: Linux/x86 kill 9 -1 14 bytes...
AnyBurn 4.3 Local Buffer Overflow
!/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Date: 20-12-2018 Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit Tested on: Windows 7 x64 SP1 Credits:...
AnyBurn 4.3 - Local Buffer Overflow (SEH)
AnyBurn 4.3 - Local Buffer Overflow SEH !/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Date: 20-12-2018 Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit...
AnyBurn 4.3 - Local Buffer Overflow (SEH)
!/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Date: 20-12-2018 Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit Tested on: Windows 7 x64 SP1 Credits:...
Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH)
Base64 Decoder 1.1.2 - Local Buffer Overflow SEH !/usr/bin/env python Exploit Author: bzyo Twitter: @bzyo Exploit Title: Base64 Decoder 1.1.2 - Local Buffer Overflow SEH Date: 12-20-18 Vulnerable Software: Base64 Decoder 1.1.2 Vendor Homepage: http://4mhz.de/b64dec.html Version: 1.1.2 Software...
LanSpy 2.0.1.159 - Local Buffer Overflow
LanSpy 2.0.1.159 - Local Buffer Overflow !/usr/bin/python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: LanSpy 2.0.1.159 - Local Buffer Overflow RCEPoC Date: 2018-12-16 Author: Juan Prescotto Tested...
PDF Explorer 1.5.66.2 - Buffer Overflow (SEH)
PDF Explorer 1.5.66.2 - Buffer Overflow SEH Exploit Title: PDF Explorer SEH Local Exploit Original Discovery:Gionathan "John" Reale DoS exploit Exploit Author: Achilles Date: 18-12-2018 Vendor Homepage: http://www.rttsoftware.com/ Software Link:...
LanSpy 2.0.1.159 Local Buffer Overflow
!/usr/bin/python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: LanSpy 2.0.1.159 - Local Buffer Overflow RCEPoC Date: 2018-12-16 Author: Juan Prescotto Tested Against: Win7 Pro SP1 64 bit Software...
LanSpy 2.0.1.159 - Local Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: LanSpy 2.0.1.159 - Local Buffer Overflow RCEPoC Date: 2018-12-16 Author: Juan...
MiniShare 1.4.1 - HEADPOST Remote Buffer Overflow
MiniShare 1.4.1 - HEADPOST Remote Buffer Overflow Not only the GET method is vulnerable to BOF CVE-2004-2271. HEAD and POST methods are also vulnerable. The difference is minimal, both are exploited in the same way. Only 1 byte difference: GET = 3, HEAD and POST = 4 length...
MiniShare 1.4.1 - 'HEAD/POST' Remote Buffer Overflow
Not only the GET method is vulnerable to BOF CVE-2004-2271. HEAD and POST methods are also vulnerable. The difference is minimal, both are exploited in the same way. Only 1 byte difference: GET = 3, HEAD and POST = 4 length ------------------------------------------------------------------- EAX...
Linux/x86 - execve(/usr/bin/ncat -lvp 1337 -e /bin/bash)+Null-Free Shellcode (95 bytes)
/ Linux/x86-execve/usr/bin/ncat -lvp 1337 -e/bin/bash+NULL-FREE Shellcode95 bytes Author : T3jv1l Contact: email protected Twitter:https://twitter.com/T3jv1l Shellcode len : 119 bytes Compilation: gcc shellcode.c -o shellcode Compilation for x64 : gcc -m32 shellcode.c -o shellcode Tested On: Ubun...
Linux/x86 - /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)
; Exploit Title: /usr/bin/head -n99 cat etc/passwd poly shellcode-571.php ; Exploit Author: Nelis ; Version: 0.2 ; Tested on: Ubuntu 12.10 ; Filename: headpass.nasm ; SLAE-ID: 1327 ; Based on: http://shell-storm.org/shellcode/files/shellcode-571.php ;...
A CVE-2017-11882 vulnerability is a new variation of a sample of the debugging and analysis-vulnerability warning-the black bar safety net
Recently harvested a suffix called doc word document, view the After is actually a rich text format document. In a test environment to open after the discovery of a network connection and executing a program of action, determine the sample is malware document. After a preliminary analysis, found...
Miasm - Reverse Engineering Framework In Python
Miasm is a free and open source GPLv2 reverse engineering framework. Miasm aims to analyze / modify / generate binary programs. Here is a non exhaustive list of features: Opening / modifying / generating PE / ELF 32 / 64 LE / BE using Elfesteem Assembling / Disassembling X86 / ARM / MIPS / SH4 /...
Safari Proxy Object Type Confusion
This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the structure of e....
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Title: XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Author: Gionathan "John" Reale 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit. Shellcode Author: Giuseppe D'Amore EDB:28996 Date:...