.. |
capture/http
|
Changing the default sites list, adding more entries
|
2008-08-08 06:01:10 +00:00 |
cmdstager
|
add an adodb based cmdstager, fixes #1431
|
2010-12-07 18:51:12 +00:00 |
cve-2010-0094
|
add an exploit module for cve-2010-0094, thanks Matthias Kaiser.
|
2010-09-08 08:20:55 +00:00 |
cve-2010-0840/vuln
|
duh, dont actually need this
|
2010-08-21 07:19:49 +00:00 |
cve-2010-3563
|
add an exploit for cve-2010-3563, thanks Matthias Kaiser
|
2010-11-19 23:02:35 +00:00 |
cve-2010-4452
|
enable java payloads, currently via one-off method
|
2011-03-17 23:57:11 +00:00 |
java_signed_applet
|
no need for a static sig anymore
|
2011-06-03 00:13:44 +00:00 |
mssql
|
Woops! Commit the h2b script needed for mssql_payload
|
2009-10-15 13:52:14 +00:00 |
mysql
|
Moving lib_mysqludf_sys*.dll to a more obvious subdirectory of the exploit binaries.
|
2011-03-24 17:48:19 +00:00 |
php
|
Add rsnake's RFI index
|
2010-02-15 15:37:04 +00:00 |
postgres
|
Fixes #3988. Adds a command execution module for PostgreSQL by uploading a UDF library and adding sys_exec() as a temporary function. Requires the target to be Windows, uses Bernardo Damele A. G.'s binaries.
|
2011-03-23 19:36:07 +00:00 |
powershell
|
Fixed format issue
|
2010-11-14 02:37:37 +00:00 |
psnuffle
|
Fixes #423. Using /s on a regex forces an encoding that cant match random binary gibberish
|
2009-11-02 17:59:45 +00:00 |
pxexploit
|
pxesploit update; compatibility with x64, compatibility with different windows versions.
|
2011-04-25 02:51:07 +00:00 |
wifi
|
Add the stub site/dns lists for airpwn/dnspwn
|
2009-11-13 19:17:14 +00:00 |
CVE-2007-3314.dat
|
move 70k binary to data/exploits instead of hex encoded in the exploit
|
2010-02-10 23:17:19 +00:00 |
CVE-2008-5353.jar
|
remove debug prints. =/
|
2010-07-20 00:57:03 +00:00 |
CVE-2009-3867.jar
|
compile java applet with 1.3, Fixes #685
|
2009-12-14 17:26:19 +00:00 |
CVE-2009-3869.jar
|
add exploit module for cve-2009-3869
|
2009-12-17 04:52:40 +00:00 |
CVE-2010-1297.swf
|
style compliance fixes
|
2010-11-01 21:45:49 +00:00 |
CVE-2010-3275.amv
|
Added Crash file for CVE-2010-3275 (VLC AMV file)
|
2011-03-25 21:01:30 +00:00 |
CVE-2010-3654.swf
|
add exploit for cve-2010-3654
|
2010-11-01 22:34:13 +00:00 |
CVE-2011-0609.swf
|
made the shellcode request random to avoid signatures
|
2011-03-26 16:00:52 +00:00 |
CVE-2011-0611.swf
|
Added swf trigger file
|
2011-04-16 02:08:03 +00:00 |
QTJavaExploit.class
|
Revision 1, still some bugs to work out
|
2007-05-29 22:56:18 +00:00 |
cve-2010-2883.ttf
|
add initial version of cve-2010-2883 exploit
|
2010-09-08 23:05:18 +00:00 |
google_proxystylesheet.xml
|
Accessing res['header'] is now case insensitive for HTTP responses
|
2007-01-05 05:22:39 +00:00 |
iceweasel_macosx.icns
|
New mail.app exploit for leopard
|
2007-11-28 22:23:31 +00:00 |
iphone_libtiff.bin
|
First version of the iPhone libtiff exploit
|
2007-10-14 22:15:41 +00:00 |
msfJavaToolkit.jar
|
Added STDERR to pure java payload, cleaned up user's view.
|
2010-01-28 22:53:36 +00:00 |
pricedown.eot
|
Adds a DoS proof of concept for MS09-065 (EOT)
|
2009-11-11 23:48:53 +00:00 |
runcalc.hlp
|
add exploit for IE Windows Help vulnerability
|
2010-03-01 23:14:20 +00:00 |
shockwave_rcsl.dir
|
style compliance fixes
|
2010-11-01 21:45:49 +00:00 |