Section: .. / groups / dsr /
| /// File Name: |
DSR-cisco-pikkemand.sh |
Description:
|
Cisco AP remote denial of service exploit that makes use of maliciously crafted ARP requests.
| | Author: | kokanin | | Related File: | cisco-sa-20060112-wireless.txt | | File Size: | 969 | | Last Modified: | Feb 2 11:29:41 2006 |
| MD5 Checksum: | d02e7efd73f0f14bbf68c9a6387031f4 |
|
| /// File Name: |
rpf-1.2.1.tar.gz |
Description:
|
RPM Finder Project version 1.2 is a utility that works much like the rpmfind.net site. It supports RedHat and Mandrake Linux.
| | Author: | Angelo Rosiello | | Homepage: | | | Changes: | Fedora support added. | | File Size: | 14464 | | Last Modified: | Jun 23 00:48:01 2004 |
| MD5 Checksum: | 213d6ddbd2928c88009976aaabcff72e |
|
| /// File Name: |
set-loop.c |
Description:
|
A shellcode that automatically obtains the highest available uid to setuid().
| | Author: | Bob | | Homepage: | http://www.dtors.net | | File Size: | 514 | | Last Modified: | Apr 21 13:10:00 2004 |
| MD5 Checksum: | f4136d365f3f880656449a228fe0c963 |
|
| /// File Name: |
lnx-smart.tgz |
Description:
|
Smart shellcode which prompts the user for the uid to setuid() with.
| | Author: | Bob | | Homepage: | http://www.dtors.net | | File Size: | 6539 | | Last Modified: | Apr 21 13:09:00 2004 |
| MD5 Checksum: | 7af85660b4523017e97a29918ef2e49b |
|
| /// File Name: |
DSR-gnats.pl |
Description:
|
Proof of concept local exploit for gnats version 3.113.1_6 tested on FreeBSD 5.0. If successful, escalates privileges to gnats.
| | Author: | inv | | Homepage: | http://www.dtors.net/ | | File Size: | 620 | | Last Modified: | Jul 20 08:34:44 2003 |
| MD5 Checksum: | f35302b106a2fee84c4ceed3da644de6 |
|
| /// File Name: |
YahPoo.c |
Description:
|
Exploit for Yahoo Messenger, Yahoo Module that allows for remote command execution on a victim machine via bad URI handling. Requires the victim to view the html.
| | Author: | bob | | Homepage: | http://www.dtors.net/ | | File Size: | 3705 | | Last Modified: | Jul 15 01:08:15 2003 |
| MD5 Checksum: | 1f8a1f0189da4662ead77ad7254d271a |
|
| /// File Name: |
DSR-upclient.pl |
Description:
|
Local exploit for Upclient 5.0.b5 that spawns a shell with kmem privileges. Tested on FreeBSD 5.0.
| | Author: | inv | | Homepage: | http://www.dtors.net | | File Size: | 633 | | Last Modified: | Jul 15 01:02:55 2003 |
| MD5 Checksum: | 6956c86d50be5d1076121733aedb2449 |
|
| /// File Name: |
DSR-mirc-url-spoofing.txt |
Description:
|
mIRC 6.03 and below allows an attacker to misleading supply a URL that poses as one URL but leads to another by setting the color of the secondary URL to the default background color.
| | Author: | Knud Erik Højgaard | | Homepage: | http://www.dtors.net | | File Size: | 1114 | | Last Modified: | Jul 11 23:16:12 2003 |
| MD5 Checksum: | fd32c6ce59bd218876dfd24ee5d0db85 |
|
| /// File Name: |
DSR-mirc-dcc-server.txt |
Description:
|
mIRC 6.03 and below allow the ability for a remote attacker to spoof a dcc chat request in a targets client.
| | Author: | Knud Erik Højgaard | | Homepage: | http://www.dtors.net | | File Size: | 936 | | Last Modified: | Jul 11 23:14:29 2003 |
| MD5 Checksum: | eb6345b03fb7484eb004825a495ef57b |
|
| /// File Name: |
DSR-mnogo.pl |
Description:
|
Proof of concept exploit for mnoGoSearch 3.1.20 (and possibly works on 3.2.10) that binds a shell to port 10000. Tested against FreeBSD.
| | Author: | inv | | Homepage: | http://www.dtors.net | | File Size: | 1194 | | Last Modified: | Jul 11 23:04:32 2003 |
| MD5 Checksum: | 2c6a3ed744a1a81e74c48085d0b4da50 |
|
| /// File Name: |
DSR-ftp_clients.pl |
Description:
|
This script runs in place of ftpd to exploit the moxftp/mftp 2.2, cftp 0.12, and Iglooftp 0.6.1 clients. Written to exploit these clients on FreeBSD.
| | Author: | inv | | Homepage: | http://www.dtors.net | | File Size: | 4935 | | Last Modified: | Jul 7 21:03:12 2003 |
| MD5 Checksum: | 7dc4f6daf3a63c8b52d05b39e03d6cf2 |
|
| /// File Name: |
manipulating.dtors.txt |
Description:
|
A paper that details the manipulation of the destructor when utilizing a buffer overflow, a format string attack, or corrupting a malloc chunk.
| | Author: | Bob | | File Size: | 6781 | | Last Modified: | Jul 6 09:18:36 2003 |
| MD5 Checksum: | cf655444e6c3559bebdf6fd69d4b4aeb |
|
| /// File Name: |
DSR-FSA.txt |
Description:
|
DTORS Security - First Security Agent, the first screen locking tool for win32 is vulnerable to a local user changing or disabling the password via the system registry.
| | Author: | Mercy | | Homepage: | http://www.dtors.net | | File Size: | 2003 | | Last Modified: | Jul 6 07:31:24 2003 |
| MD5 Checksum: | 39a266338f76a6c7109ba494819d50db |
|
| /// File Name: |
DSR-korean-elm.pl |
Description:
|
Exploit for Elm version ko-elm-2.4h4.1, the Korean release, that yields gid of bin. Old vulnerability related to this is here. Tested against FreeBSD 4.7.
| | Author: | kokanin | | File Size: | 868 | | Last Modified: | Jun 24 07:48:42 2003 |
| MD5 Checksum: | 0d17996f879f53f34e331038462c23b4 |
|
| /// File Name: |
tcp-access.tar.gz |
Description:
|
Access utility via TCP that works much like telnetd. Supports MD5 authentication, gives a full tty, and logs everything.
| | Author: | Angelo Rosiello | | Homepage: | http://www.rosiello.org/ | | File Size: | 3936 | | Last Modified: | Jun 22 14:51:24 2003 |
| MD5 Checksum: | 9c1d1100f252b607e829a6542b59b54d |
|
| /// File Name: |
rpf-1.2.tar.gz |
Description:
|
RPM Finder Project version 1.2 is a utility that works much like the rpmfind.net site. It supports RedHat and Mandrake Linux.
| | Author: | Angelo Rosiello | | Homepage: | | | File Size: | 14571 | | Last Modified: | Jun 22 00:31:15 2003 |
| MD5 Checksum: | 74e802b7d3116377a173c774ae17a174 |
|
| /// File Name: |
rpf.tar.gz |
Description:
|
RPM Finder Project version 1.0 is a utility that works much like the rpmfind.net site. It currently only supports RedHat but will support Mandrake and Suse in its future releases.
| | Author: | Angelo Rosiello | | Homepage: | | | File Size: | 14140 | | Last Modified: | Jun 4 04:58:19 2003 |
| MD5 Checksum: | 12f3f0cfd23effa642e93cace6185fa5 |
|
| /// File Name: |
bncDoS.txt |
Description:
|
bnc version 2.6.2 and below suffers from a denial of service vulnerability. Armed with a valid login and password, a remote user can kill the daemon.
| | Author: | Angelo Rosiello | | Homepage: | http://www.rosiello.org | | File Size: | 2591 | | Last Modified: | May 28 10:06:28 2003 |
| MD5 Checksum: | 19b82bf820cb2ac8cc6dc2cea49ef122 |
|
| /// File Name: |
RE_papers.tgz |
Description:
|
Two articles that present an introduction to reverse engineering a disassembly dump from gdb into an accurate C program. Armed with this knowledge, it will allow a researcher to depict potentially vulnerable functions and gather further information as to the inner workings of the program.
| | Author: | mercy | | Homepage: | http://www.dtors.net | | File Size: | 6712 | | Last Modified: | May 23 10:37:46 2003 |
| MD5 Checksum: | 1d499d8d3556cc8af90ee44158b6e0a0 |
|
| /// File Name: |
bof4kids2.txt |
Description:
|
Buffer Overflows for Kids part 2 - This is part two, the follow on from bofs4kids. In this tutorial I am going to attempt to give you the knowledge to be able to e exploit a program, without coding in C. But we will need to use gdb quite a bit, so any prior knowledge would be helpful but not necessary.
| | Author: | Bob | | Homepage: | http://blaat.dtors.net | | File Size: | 10637 | | Last Modified: | Sep 19 08:26:14 2002 |
| MD5 Checksum: | 4cfd9785b13c35dc81b71b93e26cb49f |
|
| /// File Name: |
bofs4kids.txt |
Description:
|
This tutorial is not going to teach you how to code an exploit, but what it is going to do is give you a good understanding of what a buffer overflow is, what types of buffer overflows there are, how we would go about exploiting a buffer overflow, and how to identify a buffer overflow. C and ASM knowledge is not required.
| | Author: | Bob | | Homepage: | http://blaat.dtors.net | | File Size: | 9185 | | Last Modified: | Sep 19 08:24:51 2002 |
| MD5 Checksum: | 7fbf27ec6573ab0c860055f326755bf1 |
|
| /// File Name: |
bish.c |
Description:
|
Bish.c is multi-platform shellcode tested on FreeBSD 4.6-PRERELEASE, FreeBSD 4.5-RELEASE, OpenBSD 3.0, NetBSD 1.5.2, Linux 2.0.36, Linux 2.2.12-20, and Linux 2.2.16-22. Based on code by Zillion, added setuid().
| | Author: | Bob | | Homepage: | http://blaat.dtors.net | | File Size: | 1430 | | Last Modified: | Sep 17 15:55:09 2002 |
| MD5 Checksum: | d5f1336e3d3ab4c064e0960020fef945 |
|
| /// File Name: |
FV.txt |
Description:
|
Finding Vulnerabilities - This paper explains the auditing of C source code to find application exploits. Includes a practical example of how to hack an IDS that was coded for a website.
| | Author: | Bob | | Homepage: | http://blaat.dtors.net | | File Size: | 11623 | | Last Modified: | Sep 17 15:48:12 2002 |
| MD5 Checksum: | 6e349f14320160b2b874d172bdb12a94 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
