exploit the possibilities
Showing 1 - 9 of 9 RSS Feed

Files from Ege Balci

Email addressege.balci at invictuseurope.com
First Active2016-12-11
Last Active2020-07-29
Baldr Botnet Panel Shell Upload
Posted Jul 29, 2020
Authored by Ege Balci | Site metasploit.com

This Metasploit module exploits a arbitrary file upload vulnerability within the Baldr stealer malware control panel. Attackers can turn this vulnerability into remote code execution by adding malicious PHP code inside the victim logs ZIP file and registering a new bot to the panel by uploading the ZIP file under the logs directory. On versions 3.0 and 3.1 victim logs are ciphered by a random 4 byte XOR key. This exploit module retrieves the IP specific XOR key from panel gate and registers a new victim to the panel with adding the selected payload inside the victim logs.

tags | exploit, remote, arbitrary, php, code execution, file upload
MD5 | 3aee05fb3bfa3e3eb0452ce7bbf7bdfb
Agent Tesla Panel Remote Code Execution
Posted Jun 18, 2020
Authored by Ege Balci, mekhalleh, gwillcox-r7 | Site metasploit.com

This Metasploit module exploits a command injection vulnerability within the Agent Tesla control panel, in combination with an SQL injection vulnerability and a PHP object injection vulnerability, to gain remote code execution on affected hosts. Panel versions released prior to September 12, 2018 can be exploited by unauthenticated attackers to gain remote code execution as user running the web server. Agent Tesla panels released on or after this date can still be exploited however, provided that attackers have valid credentials for the Agent Tesla control panel. Note that this module presently only fully supports Windows hosts running Agent Tesla on the WAMP stack. Support for Linux may be added in a future update, but could not be confirmed during testing.

tags | exploit, remote, web, php, code execution, sql injection
systems | linux, windows
MD5 | d4d981962d4baab56ec1e03af0dd4132
Tesla Agent Remote Code Execution
Posted Aug 15, 2019
Authored by Ege Balci | Site metasploit.com

This Metasploit module exploits a command injection vulnerability in the Tesla Agent botnet panel.

tags | exploit
MD5 | 032ab174cb2af723a6d1a76e6139a3f3
Baldr Botnet Panel Shell Upload
Posted Aug 8, 2019
Authored by Ege Balci | Site metasploit.com

This Metasploit module exploits the file upload vulnerability of baldr malware panel in order to achieve arbitrary code execution.

tags | exploit, arbitrary, code execution, file upload
MD5 | 778905bbbb01d90fd4b94eba8679d244
LG Smart IP Camera 1508190 File Disclosure
Posted Sep 12, 2018
Authored by Ege Balci

LG Smart IP Camera versions 1310250 through 1508190 suffer from a backup file download vulnerability.

tags | exploit, info disclosure
advisories | CVE-2018-16946
MD5 | 69ac27e71909aaf59d9fd8fed6733f2f
Art Of Anti Detection 3
Posted Mar 20, 2017
Authored by Ege Balci

Whitepaper called Art of Anti Detection 3 - Shellcode Alchemy.

tags | paper, shellcode
MD5 | 64ff3c0796f34131b1d9f45424cafb8b
Windows x86 Hide Console Window Shellcode
Posted Mar 12, 2017
Authored by Ege Balci

182 bytes small Windows x86 hide console window shellcode.

tags | x86, shellcode
systems | windows
MD5 | 607630eb3316f1c634f4844229c794ac
Windows x86 Protect Process Shellcode
Posted Feb 17, 2017
Authored by Ege Balci

229 bytes small Windows x86 protect process shellcode.

tags | x86, shellcode
systems | windows
MD5 | ccdac6d32d7ef147989f93231c7395e3
Art Of Anti Detection - Introduction To AV And Detection Techniques
Posted Dec 11, 2016
Authored by Ege Balci

Whitepaper called Art Of Anti Detection - Introduction To AV And Detection Techniques.

tags | paper
MD5 | 9eae0d293e376a1e0306cda3a5ac06e9
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    2 Files
  • 2
    Aug 2nd
    3 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    0 Files
  • 5
    Aug 5th
    0 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close