12 matches found
FindFunc - Advanced Filtering/Finding of Functions in IDA Pro
FindFunc is an IDA Pro plugin to find code functions that contain a certain assembly or byte pattern, reference a certain name or string, or conform to various other constraints. This is not a competitor to tools like Diaphora or BinNavi, but it is ideal to find a known function in a new binary f...
WinPmem - The Multi-Platform Memory Acquisition Tool
The WinPmem memory acquisition driver and userspace WinPmem has been the default open source memory acquisition driver for windows for a long time. It used to live in the Rekall project, but has recently been separated into its own repository. Copyright This code was originally developed within...
ABD - Course Materials For Advanced Binary Deobfuscation
Advanced Binary Deobfuscation This repository contains the course materials of Advanced Binary Deobfuscation at the Global Cybersecurity Camp GCC Tokyo in 2020. Course Abstract Reverse engineering is not easy, especially if a binary code is obfuscated. Once obfuscation performed, the binary would...
HexRaysCodeXplorer - Hex-Rays Decompiler Plugin For Better Code Navigation
The Hex-Rays Decompiler plugin for better code navigation in RE process. CodeXplorer automates code REconstruction of C++ applications or modern malware like Stuxnet, Flame, Equation, Animal Farm ... The CodeXplorer plugin is one of the first publicly available Hex-Rays Decompiler plugins. We kee...
Microsoft Windows Explorer Out-of-Bound Read - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Microsoft Windows Explorer Out-of-Bound read - Denial of Service PoC Exploit Author: Ghaaf Vendor Homepage: http://www.microsoft.com Version: Windows 7x86/x64 Tested on: 6.1.7601 Service Pack 1 Build 7601 CVE: N/A buffer = '' buffe...
Xlight FTP Server 3.8.8.5 - Buffer Overflow (PoC)
!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: Xlight FTP Server x86/x64 - Buffer Overflow Crash PoC Date: 07-11-2017 Vulnerable Software: Xlight FTP Server v3.8.8.5 x86/x64 Vendor Homepage: http://www.xlightftpd.com/ Version: v3.8.8.5 x86/x64 Software Link:...
Shellcode Win x86-6 4 - Download & execute (Generator)-bug warning-the black bar safety net
Title: Obfuscated Shellcode Windows x86/x64 Download And Execute Use PowerShell - Generator length: Dynamic ! depend on url and filename Date: 2 0 January 2 0 1 5 Author: Ali Razmjoo tested On: Windows 7 x64 ultimate WinExec = 0x77b1e695 ExitProcess = 0x77ae2acf ==================================...
Microsoft SQL Server Multiple Vulnerabilities (MS14-044)
Microsoft SQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Windows Task Scheduler Privilege Escalation 0day (CVE-2010-3338)
No description provided by source. Exploit Title: Windows Task Scheduler Privilege Escalation 0day Date: 20-11-2010 Author: webDEViL Tested on: Windows 7/2008 x86/x64 crctable = new Array 0x00000000, 0x77073096, 0xEE0E612C, 0x990951BA, 0x076DC419, 0x706AF48F, 0xE963A535, 0x9E6495A3, 0x0EDB8832,...
Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64)
No description provided by source. / second verse, same as the first CVE-2009-2698 udpsendmsg, x86/x64 Cheers to Julien/Tavis for the bug, p0c73n1 for just throwing code at NULL and finding it executed This exploit is a bit more nuanced and thoughtful ; use ./therebel.sh for everything At this...
Linux Kernel < 2.6.19 (x86/x64) - 'udp_sendmsg' Local Privilege Escalation (2)
/ second verse, same as the first CVE-2009-2698 udpsendmsg, x86/x64 Cheers to Julien/Tavis for the bug, p0c73n1 for just throwing code at NULL and finding it executed This exploit is a bit more nuanced and thoughtful ; use ./therebel.sh for everything At this moment, when each of us must fit an...
Linux Kernel 2.6.19 (x86x64) - udp_sendmsg Local Privilege Escalation (2)
Linux Kernel 2.6.19 x86x64 - udpsendmsg Local Privilege Escalation 2 / second verse, same as the first CVE-2009-2698 udpsendmsg, x86/x64 Cheers to Julien/Tavis for the bug, p0c73n1 for just throwing code at NULL and finding it executed This exploit is a bit more nuanced and thoughtful ; use...