exploit the possibilities
Showing 1 - 14 of 14 RSS Feed

Files from poplix

Email addresspoplix at papuasia.org
First Active2005-05-07
Last Active2008-04-04
virtuozzo-xsrf.txt
Posted Apr 4, 2008
Authored by poplix | Site px.dynalias.org

Virtuozzo from Parallels suffers from cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
MD5 | fecc08d75ae7ba875e668dc7dabf3479
pdflib-overflows.txt
Posted Dec 24, 2007
Authored by poplix | Site px.dynalias.org

pdflib, a library used for generating PDFs on the fly, suffers from multiple buffer overflow vulnerabilities due to the use of strcpy().

tags | advisory, overflow, vulnerability
MD5 | 5b5319a4404f4f00c7533d2437c848fa
gwcheck.c
Posted Dec 24, 2007
Authored by poplix | Site px.dynalias.org

gwcheck is a simple program that checks if a host in an ethernet network is a gateway to Internet.

tags | tool, scanner
systems | unix
MD5 | 3699f58b2676bf33886816024d7eda4d
gmailsteal_remote.scpt.txt
Posted Sep 30, 2007
Authored by poplix | Site px.dynalias.org

This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and sends it to a logging server by creating an hidden iframe into G-Mail's page.

tags | exploit, javascript
MD5 | f25867c70c9f1546c6cf772d9272279f
gmailsteal_local.scpt.txt
Posted Sep 30, 2007
Authored by poplix | Site px.dynalias.org

This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and prompts it into an alert box.

tags | exploit, javascript
MD5 | be54b1b330d258fc5c3ba6851cf17ef2
cotv2-dos.txt
Posted Feb 6, 2007
Authored by poplix

cotv 2.0 suffers from a client-side denial of service vulnerability due to a lack of validation. Demonstration exploit included.

tags | exploit, denial of service
MD5 | 09fcabf3a5299f63313c1f1e27df059b
dlink-arp.txt
Posted Dec 12, 2006
Authored by poplix

The D-LINK DWL-2000AP+ with firmware version 2.11 is prone to two remote denial of service vulnerabilities because it fails to handle arp flooding.

tags | advisory, remote, denial of service, vulnerability
MD5 | 4d569a21008153d7ab5140e0519efb08
eNM-0.0.1.txt
Posted Oct 31, 2006
Authored by poplix

easy notes manager (eNM) version 0.0.1 is affected by multiple SQL injection issues. POC included that demonstrates how to bypass authentication.

tags | exploit, sql injection
MD5 | 4c602907941ded3261092a9e6f0dea6a
tripp-alpha0.2.tar.gz
Posted Jun 26, 2006
Authored by poplix | Site tripp.dynalias.org

TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.

Changes: The ip options handler, a virtual clock for TCP timestamp, a packet delayer, a packet marker, the ability to match packets randomly, the ability to limit rewriting to a specific host only, the ability to pass rules directly via command line, the ability to set payload to empty packets were added. Various other enhancements and changes.
tags | spoof, tcp
MD5 | 717ec4d99fcbd164580ee2fb981677d5
payload-rewrite_exploit.txt
Posted Jun 26, 2006
Authored by poplix

Small whitepaper discussing how to use payload rewriting to exploit remote buffer overflow vulnerabilities.

tags | paper, remote, overflow, vulnerability
MD5 | d3a8336923bfe394553ef99315a13d8a
tripp-alpha0.1.tar.gz
Posted Feb 22, 2006
Authored by poplix | Site tripp.dynalias.org

TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.

tags | spoof, tcp
MD5 | 64fb10b1def8f0e6d9586a1c40c968a4
p0fspoof.txt
Posted Feb 14, 2006
Authored by poplix | Site tripp.dynalias.org

A paper discussing passive OS fingerprinting and spoofing OpenBSD pf "os" rulesets.

tags | spoof
systems | openbsd
MD5 | 76d3abde5584b498d8c1a5bcc06a4495
authsyn.tgz
Posted Feb 14, 2006
Authored by poplix | Site tripp.dynalias.org

proof-of-concept tool for performing passive OS fingerprint spoofing to bypass OpenBSD pf firewall rules.

tags | spoof
systems | openbsd
MD5 | 4dda8dd683b1a851a409f5d18f7001da
tripp_test.1c.tar.gz
Posted May 7, 2005
Authored by poplix | Site tripp.dynalias.org

TRIPP is a utility to rewrite outgoing IP packets. Since it can rewrite both header and payload data, it combines functionality found in iptables as well as netsed. This can be useful for performing replay attacks, altering your own OS fingerprint, or for bypassing remote firewalls.

tags | remote
systems | unix
MD5 | 46a025bada982f424d31560a4ee3c0f2
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    17 Files
  • 14
    Aug 14th
    7 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close