what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 24 of 24 RSS Feed

Files from Alejandro Ramos

Email addressprivate
First Active2005-07-01
Last Active2014-09-16
View User Profile
OSSEC 2.8 umask Clear Text Passwords
Posted Sep 16, 2014
Authored by Alejandro Ramos

OSSEC version 2.8 inherits the umask of the user when adding cleartext passwords to the .passlist file, allowing for them to be world-readable instead of setting the permissions explicitly.

tags | exploit
SHA-256 | 0dfee385226e0fb3dc8f32f7d0068e69fcf46238bec5458dfc665b4a601c7e0a
SQLmap Cheatsheet 1.0
Posted Jul 28, 2014
Authored by Alejandro Ramos

This is a very thorough cheatsheet for using SQLmap.

tags | paper
SHA-256 | ddc97c7300247d96dea29d50c29d669f4ea5e85011b11619ce9658f9642b3ae4
Redis Portscan Utility
Posted Jul 28, 2014
Authored by Alejandro Ramos

This python script port scans a host using a redis server.

tags | tool, scanner, python
systems | unix
SHA-256 | e34e7469c343ec4c195957f541a7b939f348e4592e0efa5781b15ab3d1c6083e
iTunes Manifest.mbdb Parser
Posted Jul 28, 2014
Authored by Alejandro Ramos

This python script parses the Manifest.mbdb binary database file from iTunes Backup and prints CSV output.

tags | tool, python
systems | unix
SHA-256 | 00948cd9ec05d0f8cce9a5a8d032ae719d7500423c9432e6280010936d75eaa2
Hunt CCTV Credential Disclosure
Posted Jan 28, 2013
Authored by Alejandro Ramos

Hunt CCTV and generic brands suffer from a file disclosure vulnerability that discloses authentication information.

tags | exploit, info disclosure
advisories | CVE-2013-1391
SHA-256 | 14b74ae440b4a6e07d0a98ee13f99a611c71523e6ac3e975712c53334e4ca50b
OSSEC WUI 0.3 Cross Site Scripting
Posted Sep 28, 2012
Authored by Alejandro Ramos

OSSEC WUI version 0.3 suffers from a POST cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8d079d840ac8fd5072d58b0e908b4760ef10866ac645e9b7f97eeed627b61d1a
Proxy Check 02122011
Posted Mar 21, 2012
Authored by Alejandro Ramos | Site securitybydefault.com

Proxy Check is a tool that includes a website to automate testing for web proxy content filtering. It has a battery of tests that includes looking for typically malicious URLs, several PDF exploits, and more.

tags | tool, web, scanner
systems | linux, unix
SHA-256 | ac9e7fea81ae9f981e0e3a0a3524dbb37d2aefac198ef4e781a1ffbf6cab1891
Novatel MiFi 2352 Access Bypass
Posted Mar 20, 2012
Authored by Alejandro Ramos

Novatel MiFi 2352 suffers from a direct access to backup file vulnerability.

tags | exploit, bypass
SHA-256 | 80873992662c38a0eb7c7a2ddb405fe7d26b936847457fbc64bc052df6d43d34
Joomla Time Based SQL Injection
Posted Mar 18, 2012
Authored by Alejandro Ramos

Joomla versions less than 2.5.1 time based SQL injection exploit.

tags | exploit, sql injection
SHA-256 | ab88a342a1efc79b95b100ea9ffa415936c0f919bb39bf9527fcac4a17789d5c
Blind SQL Injection Scanning Tool
Posted Jan 5, 2011
Authored by Alejandro Ramos

bsqlbf is a script that tests for blind SQL injection vulnerabilities.

tags | tool, scanner, vulnerability, sql injection
systems | unix
SHA-256 | 43ce6c12a717c9a6f73e091617d1a01bc30f58d6bcacd0ff404dd72d7deab870
HPing3 Cheatsheet
Posted Jan 3, 2011
Authored by Alejandro Ramos

This is a simple hping3 cheatsheet.

tags | paper
SHA-256 | 4f16370618a571e79dec6749a74f7fea65adfce757efd40758cd3cabecd27131
OpenText LiveLink 9.7.1 Cross Site Request Forgery / Cross Site Scripting
Posted Sep 24, 2010
Authored by Alejandro Ramos

OpenText LiveLink version 9.7.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | ef01c4568616716b2c26548ba34937768a8c0ab27b5c987575fc127013dbe144
Nmap Quick Reference Cheatsheet - Spanish Version
Posted Feb 23, 2010
Authored by Alejandro Ramos

This is a quick reference Nmap cheatsheet. Spanish version.

tags | paper
SHA-256 | 391d5acdaf83c683841ebc782cfd1307d2980b98d746e69bd6bedd663674687a
Nmap Quick Reference Cheatsheet - English Version
Posted Feb 23, 2010
Authored by Alejandro Ramos

This is a quick reference Nmap cheatsheet. English version.

tags | paper
SHA-256 | 76588ec9b3ef5b47e68a9069805f7b37fc9f3117e4755d4f28a5ca87e006c270
IP Checking Tool
Posted Oct 26, 2009
Authored by Alejandro Ramos

This is a tool to check if a range of IPs are interfaces on the same box.

tags | tool
systems | unix
SHA-256 | ca7b5e84c5cef835590accf0142fb0b997ed187eb613afeb73547abb5d91e685
Reverse Whois Using BING
Posted Oct 26, 2009
Authored by Alejandro Ramos

This is a script for reverse whois using BING.

tags | tool
systems | unix
SHA-256 | 1e63131a8716056c04b241d984eaa2c1e4718a305bfaad963bcc6c43b6780af7
lifesucks.pl.txt
Posted Jul 9, 2006
Authored by Alejandro Ramos, Pedro Andujar

LifeType version 1.0.5 remote SQL injection exploit.

tags | exploit, remote, sql injection
SHA-256 | 7cb3dc6c234b81ecb6a1977eec55a71c40c959d192c299baa5bde267e114d3b6
bsqlbf.pl.txt
Posted Feb 14, 2006
Authored by Alejandro Ramos | Site unsec.net

Proof of concept tool to be used for blind SQL injection attacks.

tags | sql injection, proof of concept
systems | unix
SHA-256 | ebf4d302ae4b06b46a2148a9f11a7328bd227131540f73c5437a387f1fe5d612
rwhois.sh
Posted Feb 13, 2006
Authored by Alejandro Ramos | Site unsec.net

A small bash script used to get virtualhosts from whois.webhosting.info.

tags | tool, scanner, bash
systems | unix
SHA-256 | f896673af88f4c837e9881e798fbc6bbd6edb6773e7c90d6f0e64a483be1a11c
cerberus-sql.txt
Posted Dec 29, 2005
Authored by Alejandro Ramos | Site unsec.net

Cerberus Helpdesk suffers from multiple SQL injection vulnerabilities in cerberus-gui and support-center.

tags | advisory, vulnerability, sql injection
SHA-256 | 6c67e69bf43d9d62e135bbbb69e30ab523d5dcf792a7af2e1980e5ce02a2dc36
cerberusHelp.txt
Posted Dec 27, 2005
Authored by Alejandro Ramos | Site unsec.net

Cerberus HelpDesk is susceptible to SQL injection and cross site scripting flaws. cerberus-gui 2.649 is affected. support-center 2.649 through 3.2.0pr2 is also affected. Full exploitation details provided.

tags | exploit, xss, sql injection
SHA-256 | 74bbd7d2062ce2e5aa2d739044ea56162482dfb29b8a08c695670873d9c8b67e
nokiaDoS.txt
Posted Sep 27, 2005
Authored by Alejandro Ramos | Site unsec.net

Nokia models 7610 and 3210 suffer from a denial of service flaw in the OBEX implementation.

tags | advisory, denial of service
SHA-256 | b0c97ab211f95b643a9aa6908eb8776121e799c92c0cdadae2646cd6c154ba66
druppy461.pl.txt
Posted Jul 7, 2005
Authored by Alejandro Ramos

Exploit that makes use of a PHP injection vulnerability in Drupal.

tags | exploit, php
SHA-256 | 2950393b3baea1845cb16347e03ac6cafb03d7e51cd06e0ae9094e105086337a
phpbb2_0_15.pl.txt
Posted Jul 1, 2005
Authored by Alejandro Ramos | Site digitalsec.net

php 2.0.15 remote command execution exploit for viewtopic.php.

tags | exploit, remote, php
SHA-256 | 1dca686b1ccc554c568cff39dd091b6f20888d10c4afad7dbed9ef7e73561365
Page 1 of 1
Back1Next

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    9 Files
  • 7
    Feb 7th
    32 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close