what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 33 of 33 RSS Feed

Files from Marshall Whittaker

Email addressprivate
First Active2006-04-29
Last Active2022-05-24
View User Profile
Miyabi CGI Tools Input Validation
Posted Jun 30, 2010
Authored by Marshall Whittaker

Miyabi CGI Tools suffers from an input validation vulnerability that allows for command execution.

tags | exploit, cgi
SHA-256 | 3bcc4da048839b8dfd8b07d5b25add2768909fb2cea91e66166114fc924d3d10
Perl Pipe Exploitation Testing Tool
Posted Jun 23, 2010
Authored by Marshall Whittaker

This is a simple script that attempts to check if a CGI script suffers from an input validation command execution vulnerability.

tags | tool, cgi, scanner
systems | unix
SHA-256 | ee39234eb7bfde6be7b06a471b85c22615c756334e75f9853f44970c002c335b
Fjallfoss.fcc.gov Cross Site Scripting
Posted May 25, 2010
Authored by Marshall Whittaker

Fjallfoss.fcc.gov suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ef3adb7700e8f4148387056801c9893244d5e797b064d87944c5117a8002a192
MAPDAV - More Accurate Password Dictionary Attack Vector 1.0p5
Posted Oct 2, 2009
Authored by Marshall Whittaker | Site mapdav.sourceforge.net

MAPDAV, or the More Accurate Password Dictionary Attack Vector, is designed to use what is known about a user or users (ex, username, first name, middle name, last name, etc) on a unix/linux system from a /etc/passwd file and tries to come up with probable combinations that could be the user's password. An administrator could run the output through a cracker and see if their user's passwords are anything easy to guess.

Changes: Now has THC-Hydra colon separated value support.
tags | cracker
systems | linux, unix
SHA-256 | a85f23646d4ee39319a904f5d91fc16bc707b6e3e334c7029bd440f3a9c4ca69
Wachovia Bank Cross Site Scripting
Posted Sep 1, 2009
Authored by Marshall Whittaker

Wachovia Bank suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | e2e14b436519d469623116a70c3888a392665bc7fc50a012919d588007c4ae14
MAPDAV - More Accurate Password Dictionary Attack Vector
Posted Jun 26, 2009
Authored by Marshall Whittaker | Site mapdav.sourceforge.net

MAPDAV, or the More Accurate Password Dictionary Attack Vector, is designed to use what is known about a user or users (ex, username, first name, middle name, last name, etc) on a unix/linux system from a /etc/passwd file and tries to come up with probable combinations that could be the user's password. An administrator could run the output through a cracker and see if their user's passwords are anything easy to guess.

tags | cracker
systems | linux, unix
SHA-256 | 4c539a231681899f26f1275b056ed0eecd96ac227aed64e16f61b780e72584e1
nmapstripper-1.3.1.tar.gz
Posted Sep 30, 2007
Authored by Marshall Whittaker | Site fluxnet.no-ip.org

Nmap Log Stripper is a Bash script intended to be a way to condense all, or some, of the IPs of a "random" (-iR) Nmap scan into a file for later usage. Common uses are to be able to feed the file back into nmap with the -iL switch, or feeding it into another port or vulnerability scanner of your choice. Stripper supports stripping the Nmap log of all but the IPs of hosts running a certain service, a version of a service, or even an arbitrary banner, and writing them to a file.

Changes: Various fixes including the removal of a backdoor.
tags | tool, arbitrary, nmap, bash
systems | unix
SHA-256 | 1a67ab5aaf2d8f6c3040cead6ca0ae4fd6fe5fee712ed7f7bd4f06ca75842110
nmapstripper-1.2.tar.gz
Posted Apr 29, 2006
Authored by Marshall Whittaker | Site fluxnet.no-ip.org

Nmap Log Stripper is a Bash script intended to be a way to condense all, or some, of the IPs of a "random" (-iR) Nmap scan into a file for later usage. Common uses are to be able to feed the file back into nmap with the -iL switch, or feeding it into another port or vulnerability scanner of your choice. Stripper supports stripping the Nmap log of all but the IPs of hosts running a certain service, a version of a service, or even an arbitrary banner, and writing them to a file.

Changes: version 1.2
tags | tool, arbitrary, nmap, bash
systems | unix
SHA-256 | a617020519869d3905ff109fdc040c61024d1c954d8aeca24ea8e8f82134e291
Page 2 of 2
Back12Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close