Latest Exploits / Tools

Latest Exploits

  • Fri, 25 Jul 2014 16:50:45 +0000: Netgear DGN2200 Password Disclosure - Exploit Files ≈ Packet Storm
    Netgear DGN2200 with firmware version 1.0.0.29_1.7.29_HotS suffers from a password disclosure vulnerability.
  • Fri, 25 Jul 2014 13:03:33 +0000: Moodle 2.7 Cross Site Scripting - Exploit Files ≈ Packet Storm
    Moodle version 2.7 suffers from a persistent cross site scripting vulnerability.
  • Fri, 25 Jul 2014 12:22:22 +0000: Zenoss Monitoring System 4.2.5-2108 Cross Site Scripting - Exploit Files ≈ Packet Storm
    Zenoss Monitoring System version 4.2.5-2108 64-bit suffers from a persistent cross site scripting vulnerability.
  • Fri, 25 Jul 2014 11:11:11 +0000: Easy File Sharing Persistent Cross Site Scripting - Exploit Files ≈ Packet Storm
    Easy File Sharing webserver suffers from a persistent cross site scripting vulnerability in the forum messages.
  • Fri, 25 Jul 2014 04:52:37 +0000: MQAC.sys Arbitrary Write Privilege Escalation - Exploit Files ≈ Packet Storm
    A vulnerability within the MQAC.sys module allows an attacker to overwrite an arbitrary location in kernel memory. This Metasploit module will elevate itself to SYSTEM, then inject the payload into another SYSTEM process.
  • Fri, 25 Jul 2014 04:52:03 +0000: BulletProof FTP Client 2010 Buffer Overflow - Exploit Files ≈ Packet Storm
    BulletProof FTP Client 2010 suffers from a buffer overflow vulnerability.
  • Fri, 25 Jul 2014 04:50:19 +0000: Ubiquiti AirVision Controller 2.1.3 Weak Settings - Exploit Files ≈ Packet Storm
    Ubiquiti AirVision Controller version 2.1.3 suffers from an overly permissive default crossdomain.xml file.
  • Fri, 25 Jul 2014 04:47:24 +0000: Ubiquiti UbiFi Controller 2.4.5 Password Hash Disclosure - Exploit Files ≈ Packet Storm
    Ubiquiti UniFi Controller version 2.4.6 discloses the administrative password hash via syslog messages.
  • Fri, 25 Jul 2014 04:45:32 +0000: Pligg 2.0.1 SQL Injection / Command Execution - Exploit Files ≈ Packet Storm
    Pligg versions 2.0.1 and below suffer from remote SQL injection, path disclosure, and remote command execution vulnerabilities.
  • Fri, 25 Jul 2014 04:43:02 +0000: Plesk Sitebuilder XSS / Bypass / Shell Upload / File Download - Exploit Files ≈ Packet Storm
    Parallels Plesk Panel version 9.5 with Sitebuilder 4.5 suffers from bypass, file download, shell upload, and cross site scripting vulnerabilities.
  • Fri, 25 Jul 2014 00:00:12 +0000: Make 3.81 Heap Overflow - Exploit Files ≈ Packet Storm
    Make version 3.81 heap overflow proof of concept exploit.
  • Thu, 24 Jul 2014 23:50:22 +0000: Lian Li NAS Hardcoded Cookie / Bypass / Privilege Escalation - Exploit Files ≈ Packet Storm
    Lian Li NAS suffers from hard-coded cookies, authentication bypass, backdoor accounts, privilege escalation, and various other vulnerabilities.
  • Thu, 24 Jul 2014 23:48:34 +0000: Omeka 2.2.1 Remote Code Execution - Exploit Files ≈ Packet Storm
    Omeka suffers from an authenticated arbitrary PHP code execution. The vulnerability is caused due to the improper verification of uploaded files in '/admin/items/add' script thru the 'file[0]' POST parameter. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script file that will be stored in '/files/original' directory after successfully disabling the file validation option (or adding something like 'application/x-php' into the allowed MIME types list) and bypassing the rewrite rule in the '.htaccess' file with '.php5' extension. Versions 2.2.1 and 2.2 are affected.
  • Thu, 24 Jul 2014 23:48:22 +0000: UniFi / mFi / AirVision Cross Site Request Forgery - Exploit Files ≈ Packet Storm
    Ubiquiti Networks UniFi Controller version 2.4.6, mFi Controller version 2.0.15, and AirVision Controller version 2.1.3 suffer from a cross site request forgery vulnerability.
  • Thu, 24 Jul 2014 11:11:11 +0000: WordPress Video Gallery 2.5 Cross Site Scripting / SQL Injection - Exploit Files ≈ Packet Storm
    WordPress Video Gallery plugin version 2.5 suffers from cross site scripting and remote SQL injection vulnerabilities.
  • Thu, 24 Jul 2014 10:22:22 +0000: Windows Mail Rogue Program.exe Execution - Exploit Files ≈ Packet Storm
    Windows Mail will execute a rogue program if it is sitting at C:\Program.exe.
  • Wed, 23 Jul 2014 21:11:05 +0000: E2 2844 SQL Injection - Exploit Files ≈ Packet Storm
    E2 version 2844 suffers from a remote SQL injection vulnerability.
  • Wed, 23 Jul 2014 10:22:22 +0000: CMS VIA-X SQL Injection - Exploit Files ≈ Packet Storm
    CMS VIA-X suffers from a remote blind SQL injection vulnerability. Note that this finding houses site-specific data.
  • Wed, 23 Jul 2014 10:11:11 +0000: Ukora CMS Shell Upload - Exploit Files ≈ Packet Storm
    Ukora CMS suffers from a remote shell upload vulnerability.
  • Tue, 22 Jul 2014 23:53:19 +0000: SonicWALL GMS 7.2 Build 7221.1701 Cross Site Scripting - Exploit Files ≈ Packet Storm
    DELL SonicWALL GMS version 7.2 build 7221.1701 suffers from multiple reflective cross site scripting vulnerabilities.

Latest Tools

  • Wed, 23 Jul 2014 10:32:33 +0000: SILC (Secure Internet Live Conferencing) Client 1.1.11 - Security Tool Files ≈ Packet Storm
    SILC (Secure Internet Live Conferencing) is a protocol which provides secure conferencing services in the Internet. It can be used to send any kind of messages, in addition to normal text messages. This includes multimedia messages like images, video, and audio stream. All messages in the SILC network are encrypted and authenticated, and messages can also be digitally signed. SILC protocol supports AES, SHA-1, PKCS#1, PKCS#3, X.509, OpenPGP, and is being developed in the IETF. This tarball holds all client related files.
  • Mon, 21 Jul 2014 19:20:25 +0000: Otori 0.3 - Security Tool Files ≈ Packet Storm
    This is a Metasploit-style module system specifically for XXE exploit code. This allows a common interface, including the ability to automate downloads of numerous files, or automatically walk the directory structure if the vulnerable system is based on Java.
  • Wed, 16 Jul 2014 23:02:47 +0000: pyClamd 0.3.10 - Security Tool Files ≈ Packet Storm
    pyClamd is a python interface to Clamd (Clamav daemon). By using pyClamd, you can add virus detection capabilities to your python software in an efficient and easy way. Instead of pyClamav which uses libclamav, pyClamd may be used by a closed source product.
  • Wed, 16 Jul 2014 22:24:44 +0000: Packet Fence 4.3.0 - Security Tool Files ≈ Packet Storm
    PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
  • Fri, 11 Jul 2014 22:37:36 +0000: Lynis Auditing Tool 1.5.7 - Security Tool Files ≈ Packet Storm
    Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
  • Thu, 10 Jul 2014 10:32:22 +0000: GNU Privacy Guard 1.4.18 - Security Tool Files ≈ Packet Storm
    GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
  • Sun, 06 Jul 2014 18:24:52 +0000: AIEngine 0.8 - Security Tool Files ≈ Packet Storm
    AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
  • Sun, 06 Jul 2014 04:44:44 +0000: XSSYA Cross Site Scripting Scanner - Security Tool Files ≈ Packet Storm
    XSSYA is a python tool that attempts malicious payloads for bypassing web application firewalls.
  • Fri, 04 Jul 2014 23:26:22 +0000: SMTPTX 1.0 Beta - Security Tool Files ≈ Packet Storm
    SMTPTX is a very simple and basic tool used for sending simple email and to do some basic email testing from a pentester perspective. It is able to send messages without depending on knowing a specific MTA/SMTP server beforehand. It handles the MX record resolution itself and connects to the relevant server and sends the email. Its able to add attachments, use TLS and do SMTP authentication, specify custom DNS servers and SMTP servers etc. More features are under way. The tool is intended to be used when assessing the functionality and basic configuration and security settings of SMTP servers and other pentesting oriented tasks. It may also be useful as a system tool in scripts and such for sending logs and such off of a system or anything that makes the life of the legit user/administrator easier. Written in Python.
  • Wed, 02 Jul 2014 00:30:35 +0000: IDGuard 0.60 - Security Tool Files ≈ Packet Storm
    IDGuard is a platform for preventing network-layer fingerprinting on the network.
  • Tue, 24 Jun 2014 23:55:41 +0000: r2dr2 UDP DrDoS Amplification Tool - Security Tool Files ≈ Packet Storm
    r2dr2 is a UDP amplification attack tool for committing DRDoS denial of service attacks.
  • Tue, 24 Jun 2014 01:15:26 +0000: Maligno 1.1 - Security Tool Files ≈ Packet Storm
    Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
  • Fri, 20 Jun 2014 07:34:25 +0000: privacyIDEA 1.0 - Security Tool Files ≈ Packet Storm
    privacyIDEA is a multi-factor authentication solution. It can manage any type of authentication device. All common OTP (one time password) devices are supported, including Google Authenticator, eToken Pass, OTP cards, and Yubikey. New devices can be added easily. Users can be retrieved from flat files, LDAP, or Active Directory. It can also handle authorization and writes all events to a digitally signed audit log, giving you basic AAA functionalities.
  • Tue, 17 Jun 2014 13:34:18 +0000: Clam AntiVirus Toolkit 0.98.4 - Security Tool Files ≈ Packet Storm
    Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
  • Mon, 16 Jun 2014 22:51:04 +0000: Otori 0.2 - Security Tool Files ≈ Packet Storm
    This is a Metasploit-style module system specifically for XXE exploit code. This allows a common interface, including the ability to automate downloads of numerous files, or automatically walk the directory structure if the vulnerable system is based on Java.
  • Fri, 13 Jun 2014 00:08:11 +0000: Lynis Auditing Tool 1.5.6 - Security Tool Files ≈ Packet Storm
    Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
  • Wed, 11 Jun 2014 10:11:11 +0000: ZTE, TP-Link, ZynOS, Huawei rom-0 Configuration Decompressor - Security Tool Files ≈ Packet Storm
    This is a python script that decompresses the rom-0 configuration for ZTE, TP-Link, ZynOS, and Huawei.
  • Tue, 10 Jun 2014 23:22:22 +0000: OpenSSL Toolkit 1.0.1h - Security Tool Files ≈ Packet Storm
    OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
  • Tue, 10 Jun 2014 17:39:35 +0000: Responder 2.0.8 - Security Tool Files ≈ Packet Storm
    Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
  • Mon, 09 Jun 2014 22:06:51 +0000: PCredz 0.9 - Security Tool Files ≈ Packet Storm
    This tool extracts credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, and more from a pcap file or from a live interface.

@Risk Exploits

  • : SANSFIRE 2011 - @RISK: The Consensus Security Alert
    SANSFIRE 2011

ExploitDB