Windows/x86 - Bind TCP shellcode / Dynamic PEB & EDT method null-free Shellcode (415 bytes)

; Name: Windows/x86 - Bind TCP shellcode / Dynamic PEB & EDT method null-free Shellcode 415 bytes ; Author: h4pp1n3ss ; Tested on: Microsoft Windows Version 10.0.19042.1237 ; Description: ; This a bind tcp shellcode that open a listen socket on 0.0.0.0 and port 1337. In order to accomplish this...

TP-Link WDR4300 Remote Code Execution

!/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using CVE-2017-13772. Tested on Firmware versions 3.13.33, Build 130618 and 3.14.3 Build 150518, hardware WDR4300 v1 Usage: 1...

ChaosPro 2.0 - SEH Buffer Overflow Exploit

!C:\Python27\python.exe Title : ChaosPro 2.0 Twitter : @securitychops Blog Post : https://securitychops.com/2019/08/24/retro-exploit-series-episode-one-chaospro-3-1.html this needs to be a backwards jump to give us room to call stack jump code jmpback80 = "\x40\x75\x80\x75" jmpforward06 =...

Linux/x86 TCP Port 1337 Bindshell Shellcode

92 bytes small Linux x86 tcp/1337 bindshell shellcode. / Linux x86 Bind TCP shellcode This shellcode will listen on port 1337 and give you /bin/sh Shellcode Author: Anurag Srivastava Shellcode Length: 92 Student-ID: SLAE-1219 Note...

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode (103 bytes)

Reverse TCP Staged Alphanumeric Shellcode Linux x86 Execve /bin/sh Author: Snir Levi, Applitects 103 Bytes date: 9.2.17 Automatic python shellcode handler with stage preset send will be ready soon: https://github.com/snir-levi/ReverseTCPAlphanumericStagedShellcodeExecve-bin-bash/ IP - 127.0.0.1...

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode (103 bytes)

Linux/x86 - Reverse TCP Alphanumeric Staged Shellcode 103 bytes. Shellcode exploit for Linx86 platform Reverse TCP Staged Alphanumeric Shellcode Linux x86 Execve /bin/sh Author: Snir Levi, Applitects 103 Bytes date: 9.2.17 Automatic python shellcode handler with stage preset send will be ready...

Windows x64 - Reverse Shell TCP Shellcode (694 bytes)

Windows x64 - Reverse Shell TCP Shellcode 694 bytes. Shellcode exploit for Winx86-64 platform / Title : Windows x64 Reverse Shell TCP shellcode size : 694 bytes Author: Roziul Hasan Khan Shifat Date : 10-11-2016 Tested on : Windows 7 x64 Professional Email : [email protected] / / Disassembly of...

Microsoft Windows - 'NetAPI32.dll' Code Execution (Python) (MS08-067)

import struct import time import sys from threading import Thread Thread is imported incase you would like to modify try: from impacket import smb from impacket import uuid from impacket import dcerpc from impacket.dcerpc.v5 import transport except ImportError, : print 'Install the following...

Microsoft Windows - NetAPI32.dll Code Execution (Python) (MS08-067)

Microsoft Windows - NetAPI32.dll Code Execution Python MS08-067 import struct import time import sys from threading import Thread Thread is imported incase you would like to modify try: from impacket import smb from impacket import uuid from impacket import dcerpc from impacket.dcerpc.v5 import...

Microsoft Windows - NetAPI32.dll Code Execution (Python) (MS08-067) Exploit

Exploit for windows platform in category remote exploits EDB-Note: Source https://raw.githubusercontent.com/ohnozzy/Exploit/master/MS08067.py import struct import time import sys from threading import Thread Thread is imported incase you would like to modify try: from impacket import smb from...

Linux/x86-64 - Bind TCP (4444/TCP) + Stager + Egghunter (0x64616564) Shellcode (157 bytes)

Linux/x86-64 - Bind TCP 4444/TCP + Stager + Egghunter 0x64616564 Shellcode 157 bytes. Shellcode exploit for Linuxx86-64 platform ;Exam Assignment 3 ;implementation of egghunter ;Default egg = "deaddead" ; ;If connected the stager check of egg , if present execute the code ; ;You can send a maximu...

OSX/PPC - Reverse TCP Shell (/bin/csh) Shellcode

OSX/PPC - Reverse TCP Shell /bin/csh Shellcode. Shellcode exploit for OSXPPC platform. Tags: Metasploit Framework MSF ;; ; ; Name: singlereversetcp ; Qualities: Can Have Nulls ; Platforms: MacOS X / PPC ; Authors: H D Moore ; Version: $Revision: 1.1 $ ; License: ; ; This file is part of the...

Helix Server 11.0.1 Remote Heap Overflow Exploit (win2k SP4)-the exploit-warning-the black bar safety net

/usr/bin/python Remote exploit for the vulnerability in Helix server v11. 0. 1 as described at http://gleg.net/helix.txt The exploit spawns a shell on TCP port 4 4 4 4 and connects to it. At the time of overflow we control EAX which is used in a call as follows 00420C64: call dword ptr eax + 4 EC...