REW-sploit - Emulate And Dissect MSF And *Other* Attacks

REW-sploit The tool has been presented at Black-Hat Arsenal USA 2021 https://www.blackhat.com/us-21/arsenal/schedule/index.htmlrew-sploit-dissecting-metasploit-attacks-24086 Slides of presentation are available at https://github.com/REW-sploit/REW-sploitdocs Need help in analyzing Windows shellco...

Ovidentia bulletindoc 2.9 Remote File Inclusion

Title: Ovidentia Module bulletindoc 2.9 Multiple Remote File Inclusion Vulnerabilities Author: bd0rk eMail: bd0rkathackermail.com Twitter: twitter.com/bd0rk Tested on: Ubuntu-Linux Download:...

Windows Media Player 7.1 <= 10 - BMP Heap Overflow PoC (MS06-005) (2)

No description provided by source. sploit creater by [email protected] ms06-005 advisory proof of concept heap overflow in wmf.dll @ 0x0035920a denial of service, cuz we can't get this to play nice shamelessly stolen from CANVAS code def intelorderi: str= a=chri % 256 i=i 8 b=chri % 256 i...

M.J.M. Quick Player 1.2 - Stack BOF

No description provided by source. Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M...

Microsoft Hotmail or Outlook 0day exploit by squirrel sploit

An 0day exploit in Microsoft Hotmail system was discovered by squirrel sploit and was successively Integer in our software / Caution should read this : English Tutorial : http://www.youtube.com/watch?v=zfsBXz3lmRg French Tutorial : http://www.youtube.com/watch?v=XHGCXajyVA To exploit this...

UFO: Alien Invasion 2.2.1 (OSX) - Remote Code Execution

!/usr/bin/python UFO: Alien Invasion v2.2.1 IRC Client Remote Code Execution - MacOSX Author: dookie Windows PoC: Jason Geffner http://www.exploit-db.com/exploits/14013 import sys, socket, struct msfpayload osx/x86/vforkshellbindtcp R | msfencode -b '\x00\x0a\x0d' -t c shellcode = "\x90" 16...

WinSmMuPl 1.2.5 - .mp3 Local Crash (PoC)

WinSmMuPl 1.2.5 - .mp3 Local Crash PoC !/usr/bin/perl WinSmMuPl 1.2.5 .mp3 Local Crash PoC + Discovered By: cr4wl3r print "\n"; print "! WinSmMuPl 1.2.5 .mp3 Local Crash PoC\n"; print "\n"; print "! By: cr4wl3r\n"; print "\n"; my $boom = "A" x 1337; my $filename = "sploit.mp3"; open...

M.J.M. Quick Player 1.2 - Local Stack Buffer Overflow

Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M. Quick Player Versions affected : 1.2...

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow / HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Koh...

Photodex ProShow Gold 4 (Windows XP SP3) - .psh Universal Buffer Overflow (SEH)

Photodex ProShow Gold 4 Windows XP SP3 - .psh Universal Buffer Overflow SEH + Vulnerability : ProShow Gold 4 BOF + Detected by : Bkis - http://blog.bkis.com/?p=737 Sploit coded by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit coded on : August 20, 2009 Type : local OS : Windows Product : Photod...

Photodex ProShow Gold 4 (.psh File) Universal BOF Exploit XP SP3 (SEH)

No description provided by source. + Vulnerability : ProShow Gold 4 BOF + Detected by : Bkis - http://blog.bkis.com/?p=737 Sploit coded by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit coded on : August 20, 2009 Type : local OS : Windows Product : Photodex ProShow Gold Versions affected : 4.0...

Ordinary users by udev vulnerability to elevate to root permissions demo-vulnerability warning-the black bar safety net

Recently exposed by the udev permissions hint of vulnerability, as long as with normal user permissions, you can elevate to root privileges, the experiment a handful, really easy to upgrade. Put the following code saved as test. sh file !/ bin/sh Linux 2.6 bug found by Sebastian Krahmer lame splo...

Free Arcade Script 1.0 LFI Command Execution Exploit

Exploit for unknown platform in category web applications ==================================================== Free Arcade Script 1.0 LFI Command Execution Exploit ==================================================== !/usr/bin/perl...

simplePMS CMS 0.1.3a LFI / Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl Script : simplePMS CMS v0.1.3a Download: http://garr.dl.sourceforge.net/sourceforge/simplepms/simplePMS-v0-1-3prealpha.tar.bz2 Remote Command Execution Exploit Also affected to multiple LFI vulnerabilities -- Needs Register Globals ON $filename no...

InselPhoto 1.1 SQL Injection

!/usr/bin/perl |----------------------------------------------------------------------------------------------------------------------------------| | INFORMATIONS | |----------------------------------------------------------------------------------------------------------------------------------|...

Amaya Web Browser 11 (bdo tag) Remote Stack Overflow Exploit (winxp)

No description provided by source. !/usr/bin/perl Amaya 11 bdo tag remote stack overflow exploit author: Rob Carter [email protected] affects: winxp sp0-3 this vulnerability only allows hex bytes between 0x01 and 0x7f to get to the stack unchanged. overwrote SEH with compatible addr of a pop po...

ESPG (Enhanced Simple PHP Gallery) 1.72 - File Disclosure

.::ESPG 1.72 File Disclosure Vulnerability::. = Scriptname: ESPG Enhanced Simple PHP Gallery 1.72 = Vendor: http://quirm.net = Download: http://quirm.net/download/21/ = Bugfounder: bd0rk = Contact: bd0rkathackermail.com = Greetings: str0ke, TheJT, Maria, Alucard, x0r32 = Vulnerable Code in...

Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ================================================================== Numark Cue 5.0 rev 2 Local .M3U File Stack Buffer Overflow Exploit ================================================================== /Numark Cue 5.0 rev 2 Local .M3U File...

IrfanView 3.99 - .IFF File Local Stack Buffer Overflow

IrfanView 3.99 - .IFF File Local Stack Buffer Overflow /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the b...

Telephone Directory 2008 Arbitrary Delete Contact Exploit

No description provided by source. !/usr/bin/perl -w Telephone Directory 2008 = Arbitrary Delete Contact Founded & Exploited by : Stack Contact: Ev!L = see down Greetz : Houssamix & Djekmani & Jadi & iuoisn & hak3r-b0y All muslims HaCkeRs : Special Thnx To : Simo64 L3azzzzzz khouya...