exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 25 RSS Feed


Heartbleed Honeypot Script
Posted Apr 9, 2014
Authored by glitch | Site glitchwrks.com

This Perl script listens on TCP port 443 and responds with completely bogus SSL heartbeat responses, unless it detects the start of a byte pattern similar to that used in Jared Stafford's (jspenguin@jspenguin.org) demo for CVE-2014-0160 'Heartbleed'. Run as root for the privileged port. Outputs IPs of suspected heartbleed scan to the console. Rickrolls scanner in the hex dump.

tags | tool, root, perl, tcp, intrusion detection
systems | unix
advisories | CVE-2014-0160
SHA-256 | 796ad9cc3fad4c720764e5e9bf2d2d16466658b294a8ea3c9c7312235cba21cd

Related Files

Hotel Booking Script 3.4 Cross Site Request Forgery
Posted Dec 19, 2018
Authored by Sainadh Jamalpur

Hotel Booking Script version 3.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | b0b33614e3e299d840feadff31f0d475ed57f5729df9e5d4eeba3073ff28f8cf
HBGK DVR 3.0.0 Build 20161206 Authentication Bypass
Posted Oct 1, 2017
Authored by RAT - ThiefKing

HBGK DVR version 3.0.0 build 20161206 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
SHA-256 | cbec5a5cbc96516cebd8e8164aee8ee987d555b700864598423c92b3b41a5066
Hotel Booking Script 1.0 SQL Injection
Posted Mar 26, 2017
Authored by Ihsan Sencan

Hotel Booking Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 0c13905f3d4d6b22017b450ffb36ffc09f3baf60edb45e0c3efc3a3fb2728495
LFI Exploiter 1.1
Posted Dec 8, 2013
Authored by M.R.S.CO

This perl script leverages /proc/self/environ to attempt getting code execution out of a local file inclusion vulnerability.

Changes: Various updates.
tags | tool, local, perl, code execution, file inclusion
systems | unix
SHA-256 | 7ce9af081371d3aac6a99db29aef3d8887c46d12ee280d8061b70faa5799c0f2
LFI Exploiter
Posted Sep 26, 2012
Authored by M.R.S.CO

This perl script leverages /proc/self/environ to attempt getting code execution out of a local file inclusion vulnerability.

tags | tool, local, perl, code execution, file inclusion
systems | unix
SHA-256 | bd77eecfb380be0b2302b89fd25fafe9ee987dadd671f7e40d057f74b0ce0ade
Hotel Booking Portal 0.1 Cross Site Scripting / SQL Injection
Posted Aug 13, 2012
Authored by Yakir Wizman

Hotel Booking Portal version 0.1 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 256b6d0f295a339e04943601e44942aae79e9b08c4b1430be39582ee5d729968
pBot Remote Code Execution
Posted Jul 31, 2012
Authored by bwall

This perl script attacks pBot by leveraging a hidden .eval command to delete and kill the bot.

tags | exploit, perl
SHA-256 | 19d0cd2419b1ba8636cb8720f58807484e2cd5fe55c43028edb94c4dfbfc419f
Hotel Booking Portal 0.1 SQL Injection
Posted Apr 4, 2012
Authored by Mark Stanislav

Hotel Booking Portal version 0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2012-1672
SHA-256 | e5bd761b6b77d6401e0829fb292820e953061861cf27bd9e56a3a7e67b73d807
H4ckCity Auto T00ls 1.0
Posted Aug 24, 2011
Authored by Farbod Mahini | Site h4ckcity.org

This perl script performs a variety of auto-rooting and shell install attempts on a given host once a shell is obtained.

tags | tool, shell, root, perl, rootkit
systems | unix
SHA-256 | b0cc1594ea4f50c159650a89af0baaf2a3e7692cd196414dd2e258a9403aebe6
HB Ecommerce SQL Injection
Posted May 27, 2011
Authored by takeshix

HB Ecommerce suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 8528a3101bc6b3f501b2554bb1afe92ddb94151a1cd38f6ca2dea1fc1480e803
Hacked By Hackers Issue 1
Posted Nov 27, 2010
Authored by hbhc

Brazilian hacking magazine called Hacked By Hackers Issue 1. Written in Portuguese.

tags | magazine
SHA-256 | f1e2a44884a7eceadd3099a27389e9aa694c94dd53e5c25fab7209ea3e1a72b3
Simple Encoding Utility
Posted Jan 27, 2010
Authored by MDH3LL

This perl script is a simple encoding utility that converts data to Hex, Unicode, etc.

tags | tool, perl
systems | unix
SHA-256 | 2b30fb69bb60fef848c4afa61d58fad18d20e6e793de647d90fe8fd5c59c4af2
HB-NS 1.3 Administrative Access
Posted Dec 1, 2009
Authored by kurdish hackers team | Site kurdteam.org

The administrative interface for HB-NS version 1.3 appears to be left wide open by default.

tags | exploit, add administrator
SHA-256 | 5ac8517d7d09b60cf3709d32323e576c96b41a1d14891723adb732ffba500722
HB CMS 1.7 SQL Injection
Posted Sep 22, 2009
Authored by Securitylab Security Research | Site securitylab.ir

HB CMS version 1.7 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | da268a8b9eaf5e7dcb12e250b564ac5e73451561cfacc11fa511335ad352de4f
Posted Jul 1, 2008
Authored by Ghost Hacker | Site real-hack.net

HIOX Banner Rotator (HBR) version 1.3 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 7c3913a8be1171a3b4ec3a60be3363d64c97dccd7490cafab8e8448af57d3f5a
Posted Dec 31, 2007
Site portcullis-security.com

This perl script will enumerate the SSL ciphers in use on any SSL encrypted service, including STARTTLS on SMTP. The script will warn the operator if a self signed certificate is detected on a https encrypted service.

tags | web, perl, encryption
SHA-256 | b072fc02eb3c308b65335f16281547f292d409ddca19c12a820a6fe6a2d9eb2c
Posted Jan 4, 2003
Authored by Spai

This perl script recovers passwords out of unix swap files. UID or GID 0 required to read swap files. May be useful for finding passwords that were entered into the wrong machine. Tested on Red Hat 6.2 - 8.0.

tags | tool, perl, rootkit
systems | linux, redhat, unix
SHA-256 | 315c8a7d3c4ad00dd5237ad5680f7641193fef637e8a4c7cae7904511b9cc7f9
Posted Sep 3, 2001
Authored by Nemes||y

Qualcomm's Qpopper mail server POP3 authentication when used with PAM that gives remote users information about whether user accounts exist or not. This perl script has been tested with Qpopper v4.0.1 on Redhat 7.x.

tags | exploit, remote, perl
systems | linux, redhat
SHA-256 | 552b77283bca7bfe71ead2e26048f4a7c53545e50aaf62baa7867718bbf668db
Posted Jul 18, 2001
Authored by Roelof Temmingh, Haroon Meer | Site sensepost.com

Checkpoint Firewall-1's SecureRemote allows any IP to connect and download sensitive network information. This perl script gives a potential attacker a wealth of information including ip addresses, network masks (and even friendly descriptions).

tags | exploit, perl
SHA-256 | e3619e7d295ef6e80dc77aada9c151eaf7aeff1c25021ef117f8331019de3414
Posted May 10, 2001
Authored by Haroon Meer | Site sensepost.com

6thsense is a TCP port scanning technique which allows you to remain completely invisible to the scanned host, as described in a Bugtraq post by Antirez. This perl script automates the tedious process.

tags | tool, scanner, perl, tcp
systems | unix
SHA-256 | 1d1a5d827807512fba0b4550e510f4dc9a65667e1ff2831570e59dd613bc14c2
Posted Apr 9, 2001
Authored by Nemes||y

Vim 5.7 local exploit - This perl script creates a text file which when edited in vim executes an arbitrary file on the local system as the user running vim.

tags | exploit, arbitrary, local, perl
SHA-256 | 94ac1222cdab6241822c8841377d2a2604f38df90c7a18c05a1615eec0506075
Posted Oct 15, 2000
Authored by Xcript | Site rhs-ck.com

AnalogX 1.1 contains remotely exploitable buffer overflows, as reported in USSR Advisory #29. This perl script will crash the server.

tags | denial of service, overflow, perl
SHA-256 | 1bdccecd24f11ee629b770cad98d4f87a53a2f4ce8e4179a6711e1acf4e37d8f
Posted Aug 9, 2000
Authored by Jose Pedro Oliveira | Site gsd.di.uminho.pt

This perl script sends 'magic packets' to wake-on-lan enabled ethernet adapters, in order to remotely power up a PC. Features the ability to use broadcast IP addresses.

tags | perl
systems | unix
SHA-256 | fe9574d64254ea77b1edd3457deddd855a7365f2345af748d14d28b3e54bafda
Posted Feb 16, 2000
Authored by Doctorx | Site hven.com.ve

Some SMTP servers crash under high volume - This perl script sends many mails to a list of addresses to test for this vulnerability.

tags | denial of service, perl
SHA-256 | 4b0aae25140afa3b8a22d859954b193385cf734b9286a137faeff59f802e83f9
Posted Aug 17, 1999
Authored by ManicX

pop-spoof.pl v0.01 - Local POP3 spoofer: Most email clients these days have the ability to cache passwords and other details (Netscape users look at pref.js explorer registry). Spoof a pop server and edit the prefs.js or registry to try and check and run this Perl script to get the passwords in clear text.

tags | exploit, local, perl, spoof, registry
SHA-256 | a75ae0370bc2a1ccf96bf370003c745a0fd946f7d2fec37b567a0d50a5977433
Page 1 of 1

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    28 Files
  • 16
    Jul 16th
    6 Files
  • 17
    Jul 17th
    34 Files
  • 18
    Jul 18th
    6 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2022 Packet Storm. All rights reserved.

Security Services
Hosting By