Browse: Home   /   Penetration Test   /   Page 84
Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization.

Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization.

January 23, 2016
Exploits, Framework, Penetration Test

Spring framework is commonly used 3rd party library used by many java server projects. If spring-tx.jar, spring-commons.jar and javax.transaction-api.jar are in your class path, and…

Read Article →
Simple ASP.NET Web API to demonstrate acquiring logins from keylogger.

Simple ASP.NET Web API to demonstrate acquiring logins from keylogger.

January 22, 2016
Penetration Test

How to USAGE StoleYourScribbles.Web.dll Introduction You have written functions in a DLL that you want to call through a webservice. Here are the steps to…

Read Article →
smod v1.0.1 - MODBUS Penetration Testing Framework

smod v1.0.1 – MODBUS Penetration Testing Framework

January 22, 2016
Brute Force, Denial Of Service/Floods, Exploits, Framework, HMI-Scada, Networking, Penetration Test

Changelog v1.0.1: + Modules                                          …

Read Article →
SFTPfuzzer - Simple ftp fuzzer.

SFTPfuzzer – Simple ftp fuzzer.

January 22, 2016
Code Scripting, Fuzzer/Fuzzing, Penetration Test

SFTPfuzzer (Simple FTP Fuzzer) is a very simple software written in Python 2.7, that allows you to easily fuzz username and password field in an…

Read Article →
venom.sh Codename: comodo venom 1.0.9 released.

venom.sh Codename: comodo venom 1.0.9 released.

January 20, 2016
Code Scripting, Exploits, Framework, Networking, Penetration Test

Changelog v1.0.9 Comodo Venom 20/1/2016: + venom.sh + template: remove templates/easy_ps1.bat, remove templates/easy_ps1.bat + display shellcode: The script will use msfvenom (metasploit) to generate shellcode…

Read Article →
Crowbar v3.4 is a brute force tool which is support openvpn, rdp, sshkey, vnckey.

Crowbar v3.4 is a brute force tool which is support openvpn, rdp, sshkey, vnckey.

January 20, 2016
Brute Force, Penetration Test

Changelog v3.4: + Made the output more verbose + Display absolute file paths + [SSH] Skip checking public keys + [SSH] Display subfolder(s) in use…

Read Article →
Viper - Tool for automating penetration testing tasks.

Viper – Tool for automating penetration testing tasks.

January 18, 2016
Code Scripting, Network Mapping/Scanner, Penetration Test

viper is A Python tool for automating penetration testing work, like intelligence gathering, testing, and reporting. Viper is still very much in development, but it…

Read Article →
IIS Short Name Scanner v2.3.4

IIS Short Name Scanner v2.3.4

January 18, 2016
Denial Of Service/Floods, Penetration Test, Scanner

Changelog v2.3.4: + iis_shortname_scanner.jar: lowercase file fix. + multi_targets.sh : lowercase file fix. + bin, src : v2.3.4 Microsoft IIS contains a flaw that may…

Read Article →