exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

Signed Applet Social Engineering Code Exec: Posted Feb 5, 2010; Authored by natron | Site metasploit.com; This exploit dynamically creates an applet via the Msf::Exploit::Java mixin, converts it to a .jar file, then signs the .jar with a dynamically created certificate containing values of your choosing. This is presented to the end user via a web page with an applet tag, loading the signed applet. The user's JVM pops a dialog asking if they trust the signed applet and displays the values chosen. Once the user clicks 'accept', the applet executes with full user permissions. The java payload used in this exploit is derived from Stephen Fewer's and HDM's payload created for the CVE-2008-5353 java deserialization exploit. This Metasploit module requires the rjb rubygem, the JDK, and the $JAVA_HOME variable to be set. If these dependencies are not present, the exploit falls back to a static, signed JAR.; tags | exploit, java, web; SHA-256 | 0a321c211183360c45f28f1eaba94bc547072aaead47439126cfa5aa2eeea4a3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 166 files
Ubuntu 102 files
indoushka 75 files
Debian 23 files
nu11secur1ty 20 files
CraCkEr 8 files
Google Security Research 7 files
Gentoo 7 files
Apple 6 files
bluedragonsec 4 files

Recent News

US Govt IT Help Desk Techie Leaked Top Secrets To Foreign Nation: Posted Sep 22, 2023; tags | headline, government, usa, data loss, spyware, ethiopia; Favorite | View

MGM Resorts Operations Resume 10 Days After Cyberattack: Posted Sep 21, 2023; tags | headline, hacker, malware, cybercrime, data loss, fraud, cryptography; Favorite | View

Poland Investigates OpenAI Over Privacy Concerns: Posted Sep 21, 2023; tags | headline, botnet, poland; Favorite | View

Cisco Beefs Up Cybersecurity Play With $28 Billion Splunk Deal: Posted Sep 21, 2023; tags | headline, cisco; Favorite | View

India's Biggest Tech Centers Named As Cyber Crime Hotspots: Posted Sep 21, 2023; tags | headline, phone, india, cybercrime, fraud; Favorite | View

Feds Issue Snatch Ransomware Warning: Posted Sep 21, 2023; tags | headline, hacker, government, malware, usa, cybercrime, fbi, cryptography; Favorite | View

Vast Majority Of Bot Attacks Emanate From China And Russia: Posted Sep 20, 2023; tags | headline, hacker, government, russia, china, botnet, cyberwar, military; Favorite | View

Robocall Scammers Sentenced In US After Netting $1.2 Million: Posted Sep 20, 2023; tags | headline, government, usa, phone, india, cybercrime, fraud; Favorite | View

The Signal Protocol Used By 1+ Billion People Is Getting A Post-Quantum Makeover: Posted Sep 20, 2023; tags | headline, privacy, phone, cryptography; Favorite | View

Marvell Disputes Claim Cavium Backdoored Chips For Uncle Sam: Posted Sep 20, 2023; tags | headline, government, usa, spyware, backdoor; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec