Browse: Home   /   0x4D   /   Page 5
Commix v0.4b - Automatic All-in-One OS Command Injection and Exploitation Tool.

Commix v0.4b – Automatic All-in-One OS Command Injection and Exploitation Tool.

January 28, 2016
Exploits, Framework, Networking, Penetration Test

Roadmap & Changelog changelog v0.4b: * Added: New option “–flush-session” for flushing session files for current target. * Added: Support to resume to the latest…

Read Article →
Venom.sh Codename: Komodo Venom v1.0.10.

Venom.sh Codename: Komodo Venom v1.0.10.

January 24, 2016
Code Scripting, Encryption, Exploits, Framework, Networking, Penetration Test

Changelog Codename: Komodo Venom v1.0.10 : FUNCTION   |   DESCRIPTION ——-                ————————————————————————— bug fix      …

Read Article →
Potato - Windows privilege escalation through NTLM Relay and NBNS Spoofing.

Potato – Windows privilege escalation through NTLM Relay and NBNS Spoofing.

January 16, 2016
Exploits, Internet Security, Networking, Penetration Test, Spoofing/Spoofer

How it works? Potato takes advantage of known issues in Windows to gain local privilege escalation, namely NTLM relay (specifically HTTP->SMB relay) and NBNS spoofing. Using…

Read Article →
Lynis v-2.1.8 : is a system and security auditing tool for Unix/Linux.

Lynis v-2.1.8 : is a system and security auditing tool for Unix/Linux.

January 10, 2016
Automation, Intrussion Detection and Prevention System(IDS/IPS), Networking, Penetration Test, Security Tools

Changelog v2.1.8 10/1/2016: + New version, changed official author name and date + [AUTH-9234] Gather users on AIX, and rewriting of tests. * Networking +…

Read Article →
MEDCIN Engine Memory Write/Heap Buffer Overflow module.

MEDCIN Engine Memory Write/Heap Buffer Overflow module.

January 6, 2016
Code Scripting, Encryption, Exploits, Networking

CVE-2015-2898-2901, CVE-2015-6006 POC Exploit & Metasploit module This is a proof of concept exploit for version 2.22.20142.166 and prior of the MEDCIN Engine (medcinserv.exe or…

Read Article →
nosqlattack - Automate some attacks against NoSQL-backed web applications.

nosqlattack – Automate some attacks against NoSQL-backed web applications.

January 3, 2016
Penetration Test, Sql Injection

nosqlattack is an application that tries to automate some stuff when testing for injection attacks in JS and NoSQL web aplications. Some of the functionality…

Read Article →
Eharvester is simple script which extracts email address from the given domain for penetration testing process.

Eharvester is simple script which extracts email address from the given domain for penetration testing process.

December 29, 2015
Code Scripting, Penetration Test

Eharvester is simple script which extracts email address from the given domain for penetration testing process. Script works on two modes: + In first mode…

Read Article →
Updates wifiphiser - Fast automated phishing attacks against WPA networks.

Updates wifiphiser – Fast automated phishing attacks against WPA networks.

December 24, 2015
Networking, Penetration Test, Phishing, Wireless/wifi

Latest change 24/12/2015: + Introducing phishingpage module. + wifiphisher.py : Fix bug where online template would not download. + phishingpage.py : Created the logoSnatcher.sh file…

Read Article →