This program uses multithreading to scan a range of IP addresses (IPv4) to find telnet/ssh and web servers. It then brute forces credentials against the host and upon success, will detect the type of host and execute commands.
a7f96a170e379614734be086083c020f
MoroccoTel boxes suffer from an issue where there is a default password that can be used on the telnet server.
ea72ca9ae12fae7f54519bfaaf0b4c1e
The Huawei MT880 device suffers from cross site request forgery vulnerabilities.
d495b32eeec9d223717cf369ace5b529
w3af User Guide written in French.
dfe4690bfae4bf0ab6253a92eca705d4
JA-SNMP-Reader is a simple Windows executable that reads values from an OID of a given SNMP Agent.
0e01e20163806e271245cbde3cc37c42
JASniff is a small handy graphical Windows TCP/UDP/ICMP packet sniffer. This tool will be embedded in the MSF-XB exploits development platform soon.Full source and a binary is included.
defeec8052efd7f78098673415890f2c
Microsoft Visual Basic Active-X Controls buffer overflow proof of concept exploit that leverages mscomct2.ocx.
46ee73479ac63602c50cc9b6b55e75b6
Microsoft XML Core Services DTD cross-domain scripting proof of concept exploit that makes use of the vulnerability noted in MS08-069.
8441d49b0a83622e2aaabb81dfad45c2
MSF eXploit Builder is a Windows GUI to build Metasploit Framework exploit modules. It will help you to edit/modify/create/test exploit modules for the Metasploit Framework. Full source release. It includes a built-in fuzzer, a win32 debugger, and a lot of tools used in the process of exploit development.
20e658f3ba78549a9343941bc64f2a7c
The e107 My_Gallery plugin version 2.3 suffers from an arbitrary file download vulnerability.
cad17ab68eaa58aea31957730597ffde
BTScan is a bluetooth scanner for Windows. It scans for the accessible bluetooth devices, retrieves the list of available services on these devices, and allow file uploads via bluetooth.
5b120ee7738e3c8662569a4f2ed4be75
Whitepaper discussing how to speed up the exploit development process as presented at VNSECON07.
06a895e8ac593460d4bfdf6ec7692a60
The .wdp project file handling in PCSoft WinDEV suffers from a buffer overflow vulnerability.
03e2b0381750550784d286d7af738550
XM Easy Personal FTP server version 5.0.1 remote overflow proof of concept exploit.
de4f605683f73b4379cd668e2cb712f8
Remote exploit for ArGoSoft FTP server versions 1.4.3.5 and below that makes use of a remote heap overflow in the DELE command.
1c192a60c30b4db1f397595407a4cb15
BulletProof FTP server version 2.4.0.31 local privilege escalation exploit that provides a shell with SYSTEM privileges.
cc4e2b6ca245131b55750aabff2e0ebe
Vulnerabilities that allow an attacker to inject malicious PHP code exist in the phpBB2 forum using the Cash_Mod module.
0d061f49d0ad856b5b649edc26072364