Bypass Antivirus & Exploit Windows Using PowerShell Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks will cause denial of service conditions. Affected Version Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows Read more…
ABOUT Finsploit is a simple bash script to quickly and easily search both local and online exploit databases. This repository also includes “copysploit” to copy any exploit-db exploit to the current directory and “compilesploit” to automatically compile and run any C exploit (ie. ./copysploit 1337.c && ./compilesploit 1337.c). For updates Read more…
smb-vuln-ms17-010.nse nmap nse script description Attempts to detect if a Microsoft SMBv1 server is vulnerable to a remote code execution vulnerability (ms2017-010). The script connects to the $IPC tree, executes a transaction on FID 0 and checks if the error “STATUS_INSUFF_SERVER_RESOURCES” is returned to determine if the target is not patched against Read more…
Tool To Detect Possible Infections (Malicious Code) The Web Exploit Detector is a Node.js application (and NPM module) used to detect possible infections, malicious code and suspicious files in web hosting environments. This application is intended to be run on web servers hosting one or more websites. Running the Read more…
Security researchers are still busy developing fixes for the Wannacry ransomware. Well, Windows was affected massively across the world. Researchers at RiskSense have successfully managed to port the WannaCry exploit to infect Windows 10 as well. The world has just faced a huge ransomware attack. Wannacry Ransomware attack already hit Read more…
Exploit Windows Machine Shadow Brokers shocked the world once again leaked a confidential document, which contains a number of beautifully Windows remote exploits that can cover a large number of Windows servers, Windows servers almost all across the board overnight exposure to risk. What is MS-17-10? Remote code execution Read more…
Adobe Flash – Margin Handling Heap Corruption Exploit Author Google Security Research Risk [ Security Risk Medium ] 0day-ID 0day-ID-27795 Category dos / poc Date add 17-05-2017 CVE CVE-2017-3061 Platform multiple Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1174 The attached fuzzed swf causes a crash due to heap corruption when processing the margins of a Read more…
Author Google Security Research Risk [ Security Risk Medium ] 0day-ID 0day-ID-27796 Category dos / poc Date add 17-05-2017 CVE CVE-2017-3064 Platform multiple Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1211 The attached swf causes an out-of-bounds read in getting the width of a TextField. Proof of Concept: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/42019.zip Source
Hacking Windows using EternalBlue & DoublePulsar via Metasploit on Kali Linux 2017 This exploit is combination of two tools Eternal Blue which is use as backdooring in windows and Doublepulsar which is used for injecting dll file with the help of payload. So we will manually add this exploit Read more…
Brute Force SMB Share and get shell Introduce SMB: Short for Server Message Block, SMB is a common network communications method used on Microsoft operating systems allowing those computers to communicate with other SMB computers. Linux and Unix computers can find other computers that respond to SMB requests using Read more…