Pentesterlabs: cve-2014-6271 (a.k.a. shellshocked)
April 4th, 2019 📆 | 5451 Views ⚑
Quick Demo of the latest buzz in the exploit community. This is a example of CGI exploitation, although it exists
Author Archives: Hood3dRob1n
Tagged with: pentesterlabs • shellshocked
Pentester Lab: XSS 2 Admin 2 SQLi 2 Shell
April 1st, 2019 📆 | 4418 Views ⚑
Having some fun with the free vm from Pentester Lab. Lots of good training on their site and tons of
Tagged with: admin • pentester • shell
WordPress 3.x Persistent XSS to RCE (CVE-2014-9031)
December 14th, 2014 📆 | 4762 Views ⚑
Quick demonstration of the newly published persistent XSS affecting WordPress 3.x versions (CVE-2014-9031). I will show you how it works
Tagged with: persistent • wordpress
MS-SQL Injection 2 Meterpreter Shell (SQLMAP –os-pwn)
June 22nd, 2013 📆 | 4457 Views ⚑
More fun during the CTF captured for your viewing enjoyment. In this video I show quick demonstration of how you
Tagged with: injection • meterpreter • shell • sqlmap
MS-SQL Injection 2 Meterpreter Shell (w Credentials)
June 17th, 2013 📆 | 4451 Views ⚑
A quick demonstration of how you can abuse MS-SQL direct access with credentials to deliver payloads and command execution using
Tagged with: credentials • injection • meterpreter • shell
![[Ruby] SearchSploits.rb - Exploit-DB Local Archive Search Tool](https://www.digitalmunition.me/wp-content/uploads/2019/06/Ruby-SearchSploits.rb-Exploit-DB-Local-Archive-Search-Tool.jpg)
[Ruby] SearchSploits.rb – Exploit-DB Local Archive Search Tool
January 7th, 2013 📆 | 6331 Views ⚑
A small script I wrote to download and search through the Exploit-DB local archive. It has been done before and
Tagged with: archive • exploit • local • search • searchsploits
XSS to FULL OS Comprimise using XSSF + METASPLOIT
October 25th, 2011 📆 | 8199 Views ⚑
Overview of XSSF + Metasploit. I use them to turn a common XSS vulnerability into full OS comprimise of vicitm
Tagged with: comprimise • metasploit • using
Popular
The best security conferences of 2021 December 21, 2020 The COVID-19 pandemic certainly threw a monkey wrench into the…
A second hacking group has targeted SolarWinds systems December 21, 2020 As forensic evidence is slowly being unearthed in the aftermath…
GitLab 11.4.7 – Remote Code Execution (Authenticated) December 20, 2020 # Exploit Title: GitLab 11.4.7 Authenticated Remote Code Execution (No…
Windows 10 bug corrupts your hard drive on seeing… January 15, 2021 An unpatched zero-day in Microsoft Windows 10 allows attackers to…
Rioters Open Capitol’s Doors to Potential Cyberthreats January 7, 2021 Business Continuity Management / Disaster Recovery , Critical Infrastructure Security…
WordPress Contact Form 7 5.3.1 Shell Upload ≈ Packet Storm December 22, 2020 # Exploit Title: Wordpress Plugin Contact Form 7 5.3.1 -…- Oracle Solaris SunSSH PAM parse_user_name() Buffer… December 18, 2020 ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule…
Members
Comments