124 matches found
What is VPS Hosting? How Does it Work?
By Owais Sultan VPS hosting is storage space on a server which a service provider allocates, according to the amount you think your website needs. Overall, VPS web hosting lies somewhere in between shared hosting and dedicated hosting. A Virtual Private Server gives you administrative power over...
AutoSploit v3.0 - Automated Mass Exploiter
As the name might suggest AutoSploit attempts to automate the exploitation of remote hosts. Targets can be collected automatically through Shodan, Censys or Zoomeye. But options to add your custom targets and host lists have been included as well. The available Metasploit modules have been select...
PT-2023-15168 · Unknown +1 · Gpac Mp4Box +1
Name of the Vulnerable Software and Affected Versions: GPAC MP4box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a buffer overflow in the hevc parse vps extension function of media tools/av parsers.c. This function is used for parsing video parameters, and the buffer...
PT-2023-15453 · Unknown +1 · Gpac Mp4Box +1
Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev644-g5c4df2a67 Description: The issue is related to a buffer overflow in the hevc parse vps extension function, located in the media tools/av parsers.c file at line 7662. This buffer overflow can be exploited,...
GTRS - Google Translator Reverse Shell
This tools uses Google Translator as a proxy to send arbitrary commands to an infected machine. INFECTED MACHINE ==HTTPS== GOOGLE TRANSLATE ==HTTP== C2 Environment Configuration First you need a VPS and a domain, for the domain you can get a free one on Freenom. With your VPS and domain, just edi...
CLI for Ephemeral Penetration Testing: hideNsneak
This application assists in managing attack infrastructure for penetration testers by providing an interface to rapidly deploy, manage, and take down various cloud services. These include VMs, domain fronting, Cobalt Strike servers, API gateways, and firewalls. hideNsneak provides a simple...
Converto - Installing Kali Linux On VPS Server
Installing Kali Linux On VPS Server. Steps For Installing :- 1.sudo apt-get update 2.sudo apt-get install git 3.git clone https://github.com/developerkunal/Converto.git 4.cd Converto. 5.chmod +x converto.sh 6. ./converto.sh 7. Type 1 For Install Type 2 For Exit 8. Press 1 and Enter 9. Now choose...
AutoSploit v2.0 - Automated Mass Exploiter
As the name might suggest AutoSploit attempts to automate the exploitation of remote hosts. Targets can be collected automatically through Shodan, Censys or Zoomeye. But options to add your custom targets and host lists have been included as well. The available Metasploit modules have been select...
Automated Mass Exploiter: AutoSploit
As the name might suggest AutoSploit attempts to automate the exploitation of remote hosts. Targets are collected automatically as well by employing the Shodan.io API. The program allows the user to enter their platform specific search query such as; Apache , IIS , etc, upon which a list of...
CentOS Web Panel 0.9.8.12 SQL Injection
Document Title: =============== CentOS Web Panel v0.9.8.12 - Remote SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1833 Release Date: ============= 2018-01-22 Vulnerability Laboratory ID VL-ID:...
net-Shield - An Easy and Simple Anti-DDoS solution for VPS, Dedicated Servers and IoT devices
An Easy and Simple Anti-DDoS solution for VPS,Dedicated Servers and IoT devices based on iptables. Requirements Linux System with python, iptables Nginx Will be installed automatically by install.sh Quickstart Running as a standalone software No install.sh required via DryRun option -dry to only...
Part 2: Reading SPAM For Research
A couple weeks ago, I posted a blog that is a follow up of an article I published in Information Security Magazine. In that post I wrote about collecting phishing samples and identifying domain squatters that might be looking to harvest information from their target. This is the final blog entry...
Anti-DDoS Solution Based on iptables: nShield
Anti-DDoS Solution Based on iptables An Easy and Simple Anti-DDoS solution for VPS, Dedicated Servers and IoT devices based on iptables Requirements Linux System with python, iptables Nginx Will be installed automatically by install.sh Quickstart cd /home/ && git clone...
Parrot Security 3.3 - Security GNU/Linux distribution designed with cloud pentesting and IoT security in mind
Security GNU/Linux distribution designed with cloud pentesting and IoT security in mind. It includes a full portable laboratory for security and digital forensics experts, but it also includes all you need to develop your own softwares or protect your privacy with anonymity and crypto tools...
hostgator.com XSS vulnerability
Open Bug Bounty ID: OBB-199623 Description| Value ---|--- Affected Website:| hostgator.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
HackerOne: Web Authentication Endpoint Credentials Brute-Force Vulnerability
Dear, Your web authentication endpoint, https://hackerone.com/sessions POST, currently protects against credentials brute-force attacks only by requests rate-limiting based on IP. It was found that if an attacker sends login requests faster than every 4 seconds from the same IP address, it would...
Solr 3.5.0 - Arbitrary Data Deletion
Exploit for java platform in category web applications Exploit Title: All Solr Data Can Be Delete Google Dork: intext:Schema Config Analysis Schema Browser Statistics Info Distribution Ping Logging Date: 5/2/2016 Exploit Author: N37 Myanmar Vendor Homepage: http://lucene.apache.org/solr/ Software...
Solr 3.5.0 - Arbitrary Data Deletion
Solr 3.5.0 - Arbitrary Data Deletion Exploit Title: All Solr Data Can Be Delete Google Dork: intext:Schema Config Analysis Schema Browser Statistics Info Distribution Ping Logging Date: 5/2/2016 Exploit Author: N37 Myanmar Vendor Homepage: http://lucene.apache.org/solr/ Software Link:...
site5.com XSS vulnerability
Vulnerable URL: http://www.site5.com/order/vps/ Details: Description| Value ---|--- Patched:| Yes, at 06.11.2016 Latest check for patch:| 06.11.2016 12:17 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 8731 Google Pagerank| 6 VIP website status:| Yes Check...
Target Attackers Took 11 GB of Data, Researchers Say
The attackers who infiltrated Target’s network several weeks ago and made off with 40 million credit and debit card numbers used a multi-stage attack, funneling their stolen data through an FTP server and then a VPS server in Russia. It took more than two weeks, but the attackers eventually...