Posted by scriptjunkie in Exploits, Metasploit on September 27, 2010
Update: these command stagers have been integrated into metasploit Command injection/execution bugs are a relatively common vulnerability. For example, Internet Explorer, Google Chrome, and Mozilla Firefox have all had these problems, at least including common add-ons. (see http://www.securityfocus.com/archive/1/archive/1/499570/100/0/threaded, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-5045, etc.) Many server-side scripts in webapps also suffer from the same issues. Against a Linux target, […]
CMD, command, exploit, Metasploit, stager, vbs, vbscript, windows
Posted by scriptjunkie in /dev/urandom, Metasploit on September 21, 2010
First, in answer to a common question, the new msfgui can be run on Windows if Java is installed by double-clicking (starting in your program files directory) MetasploitFramework3msf3dataguimsfgui.jar so make a shortcut to that and place it on your desktop. Next think about the fact that Metasploit has more features and runs with less memory […]
Posted by scriptjunkie in Uncategorized on September 14, 2010
In response to a number of questions about how to get sessionthief running on linux, here are the steps to get it working on Ubuntu: First, I apologize, because if anyone tried, the compilation failed due to a case-mismatch on a filename. I had not noticed because I had stored the files on a FAT-formatted […]
You are currently browsing the archives for September, 2010
Fusion theme by digitalnature | powered by WordPress
Entries (RSS) and Comments (RSS) ^