Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:51:56 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2221888338&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Operating%20System%3A%20Windows%2032%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fos%2F32%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2221888338.1338191516.1338191516.1338191516.1%3B%2B__utmz%3D32867617.1338191516.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/Quarks-PwDump-0.1b.html Sun, 20 May 2012 18:11:11 GMT Quarks PwDump is a native Win32 tool to extract credentials from Windows operating systems. It currently extracts local accounts NT/LM hashes and history, domain accounts NT/LM hashes and history, cached domain password, and Bitlocker recovery information. http://packetstormsecurity.org/files/101043/shutdown-shellcode.txt http://packetstormsecurity.org/files/101043/shutdown-shellcode.txt http://packetstormsecurity.org/files/101043/Win32-XP-SP3-Shutdown-Shellcode.html Mon, 02 May 2011 23:45:23 GMT 56 bytes small Win32/XP SP3 shutdown windows shellcode with a 30 second timer. http://packetstormsecurity.org/files/101041/magnifier-shellcode.txt http://packetstormsecurity.org/files/101041/magnifier-shellcode.txt http://packetstormsecurity.org/files/101041/Win32-XP-SP3-Windows-Magnifier-Shellcode.html Mon, 02 May 2011 23:43:16 GMT 52 bytes small Win32/XP SP3 windows magnifier shellcode. http://packetstormsecurity.org/files/98978/win32eggsearch-shellcode.txt http://packetstormsecurity.org/files/98978/win32eggsearch-shellcode.txt http://packetstormsecurity.org/files/98978/Win32-Eggsearch-Shellcode.html Sun, 06 Mar 2011 20:21:56 GMT 33 bytes small Win32 egg searching shellcode that should work on all service packs of Microsoft Windows XP, 2k, and 2k3. http://packetstormsecurity.org/files/86294/vlc_smb_uri.rb.txt http://packetstormsecurity.org/files/86294/vlc_smb_uri.rb.txt http://packetstormsecurity.org/files/86294/VideoLAN-Client-VLC-Win32-smb-URI-Buffer-Overflow.html Mon, 15 Feb 2010 22:09:31 GMT This Metasploit module exploits a stack-based buffer overflow in the Win32AddConnection function of the VideoLAN VLC media player. Versions 0.9.9 throught 1.0.1 are reportedly affected. This vulnerability is only present in Win32 builds of VLC. This payload was found to work with the windows/exec and windows/meterpreter/reverse_tcp payloads. However, the windows/meterpreter/reverse_ord_tcp was found not to work. http://packetstormsecurity.org/files/71259/MSF-XB11.rar http://packetstormsecurity.org/files/71259/MSF-XB11.rar http://packetstormsecurity.org/files/71259/MSF-XB11.rar.html Mon, 27 Oct 2008 22:29:03 GMT MSF eXploit Builder is a Windows GUI to build Metasploit Framework exploit modules. It will help you to edit/modify/create/test exploit modules for the Metasploit Framework. Full source release. It includes a built-in fuzzer, a win32 debugger, and a lot of tools used in the process of exploit development. http://packetstormsecurity.org/files/57232/vinetto-beta-0.07.tar.gz http://packetstormsecurity.org/files/57232/vinetto-beta-0.07.tar.gz http://packetstormsecurity.org/files/57232/vinetto-beta-0.07.tar.gz.html Wed, 20 Jun 2007 04:35:36 GMT Vinetto is a tool intended for forensics examinations. It is a console program to extract thumbnail images and their metadata from those thumbs.db files generated under Microsoft Windows. Vinetto works under Linux, Cygwin(win32) and Mac OS X. http://packetstormsecurity.org/files/57162/TA07-163A.txt http://packetstormsecurity.org/files/57162/TA07-163A.txt http://packetstormsecurity.org/files/57162/Technical-Cyber-Security-Alert-2007-163A.html Wed, 13 Jun 2007 01:25:48 GMT Technical Cyber Security Alert TA07-163A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Windows Secure Channel, Internet Explorer, Win32 API, Windows Mail and Outlook Express. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system. http://packetstormsecurity.org/files/54258/02062007-raptor_winudf.tgz http://packetstormsecurity.org/files/54258/02062007-raptor_winudf.tgz http://packetstormsecurity.org/files/54258/02062007-raptor_winudf.tgz.html Thu, 08 Feb 2007 05:08:50 GMT This is a MySQL backdoor kit for Windows based on the UDFs (User Defined Functions) mechanism. It can be used to spawn a reverse shell (netcat UDF on port 80/tcp) or to execute single OS commands (exec UDF). Tested on MySQL 4.0.18-win32 (running on Windows XP SP2), MySQL 4.1.22-win32 (running on Windows XP SP2), MySQL 5.0.27-win32 (running on Windows XP SP2). http://packetstormsecurity.org/files/46232/vinetto-alpha-0.06.tar.gz http://packetstormsecurity.org/files/46232/vinetto-alpha-0.06.tar.gz http://packetstormsecurity.org/files/46232/vinetto-alpha-0.06.tar.gz.html Tue, 09 May 2006 21:25:14 GMT Vinetto is a tool intended for forensics examinations. It is a console program to extract thumbnail images and their metadata from those thumbs.db files generated under Microsoft Windows. Vinetto works under Linux, Cygwin(win32) and Mac OS X. http://packetstormsecurity.org/files/45946/vinetto-alpha-0.05.tar.gz http://packetstormsecurity.org/files/45946/vinetto-alpha-0.05.tar.gz http://packetstormsecurity.org/files/45946/vinetto-alpha-0.05.tar.gz.html Sat, 29 Apr 2006 10:43:47 GMT Vinetto is a tool intended for forensics examinations. It is a console program to extract thumbnail images and their metadata from those thumbs.db files generated under Microsoft Windows. Vinetto works under Linux, Cygwin(win32) and Mac OS X. http://packetstormsecurity.org/files/41115/snort_bo_overflow_win32.pm.txt http://packetstormsecurity.org/files/41115/snort_bo_overflow_win32.pm.txt http://packetstormsecurity.org/files/41115/snort_bo_overflow_win32.pm.txt.html Wed, 02 Nov 2005 01:21:35 GMT Remote Snort Back Orifice preprocessor overflow Metasploit exploit for Win32 targets. Exploits Snort versions 2.4.0 through 2.4.2. Tested against Snort 2.4.2 Binary with Windows XP Professional SP1/SP2, Windows Server 2003 SP1, Windows Server 2000 SP0, and Windows 2000 Professional SP0. http://packetstormsecurity.org/files/36063/cabrightstor_disco_servicepc.pm http://packetstormsecurity.org/files/36063/cabrightstor_disco_servicepc.pm http://packetstormsecurity.org/files/36063/cabrightstor_disco_servicepc.pm.html Fri, 18 Feb 2005 06:24:02 GMT CA BrightStor Discovery Service SERVICEPC Overflow for Win32, win2000, winxp, and win2003 which exploits a vulnerability in the TCP listener on port 45123. Affects all known versions of the BrightStor product. More information available here. http://packetstormsecurity.org/files/36062/cabrightstor_disco.pm http://packetstormsecurity.org/files/36062/cabrightstor_disco.pm http://packetstormsecurity.org/files/36062/cabrightstor_disco.pm.html Fri, 18 Feb 2005 06:18:59 GMT The CA BrightStor Discovery Service overflow exploit is a perl module exploits a vulnerability in the CA BrightStor Discovery Service which occurs when a large request is sent to UDP port 41524, triggering a stack overflow. Targets include Win32, win2000, winxp, and win2003. More information available here. http://packetstormsecurity.org/files/35130/weplab-0.1.3.tar.gz http://packetstormsecurity.org/files/35130/weplab-0.1.3.tar.gz http://packetstormsecurity.org/files/35130/weplab-0.1.3.tar.gz.html Fri, 10 Dec 2004 04:32:50 GMT Weplab Win32 is a windows tool to review the security of WEP encryption in wireless networks from an educational point of view. Several attacks are available to help measure the effectiveness and minimum requirements necessary to succeed. http://packetstormsecurity.org/files/35110/efuzz01.zip http://packetstormsecurity.org/files/35110/efuzz01.zip http://packetstormsecurity.org/files/35110/efuzz01.zip.html Wed, 24 Nov 2004 04:31:37 GMT Efuzz is an easy to use Win32 tcp/udp protocol fuzzer which finds unknown buffer overflows in local and remote services. Uses config files to define the range of malformed requests. Includes C source, released under GPL. http://packetstormsecurity.org/files/34692/Intro_to_Win32_Exploits.pdf http://packetstormsecurity.org/files/34692/Intro_to_Win32_Exploits.pdf http://packetstormsecurity.org/files/34692/Intro_to_Win32_Exploits.pdf.html Wed, 20 Oct 2004 19:39:00 GMT A good introduction to writing exploits for the Win32 platform. Walks through creation of an exploit for a real vulnerable piece of software, using OllyDbg to help isolate the fault and exploit it. http://packetstormsecurity.org/files/34449/weplab-0.1.2-beta_win32.zip http://packetstormsecurity.org/files/34449/weplab-0.1.2-beta_win32.zip http://packetstormsecurity.org/files/34449/weplab-0.1.2-beta_win32.zip.html Thu, 23 Sep 2004 05:02:45 GMT Weplab Win32 is a windows tool to review the security of WEP encryption in wireless networks from an educational point of view. Several attacks are available to help measure the effectiveness and minimum requirements necessary to succeed. http://packetstormsecurity.org/files/34331/twinftp103r2.txt http://packetstormsecurity.org/files/34331/twinftp103r2.txt http://packetstormsecurity.org/files/34331/twinftp103r2.txt.html Mon, 13 Sep 2004 21:57:32 GMT A directory traversal vulnerability exists in several FTP commands of TwinFTP that may be exploited by a malicious user to access files outside the FTP directory. The problem lies with the incorrect filtering of directory name supplied to CWD, STOR and RETR commands. Versions tested: TwinFTP Server Standard 1.0.3 R2 (Win32) on English WinXP SP1, TwinFTP Server Enterprise 1.0.3 R2 (Win32) on English Win2K SP2. http://packetstormsecurity.org/files/33776/phrack62.tar.gz http://packetstormsecurity.org/files/33776/phrack62.tar.gz http://packetstormsecurity.org/files/33776/phrack62.tar.gz.html Tue, 13 Jul 2004 02:15:00 GMT Phrack Magazine Issue 62 - In this issue: Bypassing Win BO Protection, Kernel Mode Backdoor for NT, Advances in Windows Shellcode, UTF8 Shellcode, Attacking Apache Modules, Radio Hacking, Win32 Portable Userland Rootkit, Bypassing Windows Personal Firewalls, A DynamicPolyalphabeticSubstitutionCipher, and more. http://packetstormsecurity.org/files/32740/GateKeeper.c http://packetstormsecurity.org/files/32740/GateKeeper.c http://packetstormsecurity.org/files/32740/GateKeeper.c.html Mon, 23 Feb 2004 09:42:00 GMT GateKeeper Pro 4.7 on the win32 platform has a buffer overflow vulnerability when processing GET requests. Full remote exploit included. Tested against Microsoft Windows 2000 Pro and Microsoft Windows XP. http://packetstormsecurity.org/files/32496/GetRAW.tar.gz http://packetstormsecurity.org/files/32496/GetRAW.tar.gz http://packetstormsecurity.org/files/32496/GetRAW.tar.gz.html Fri, 09 Jan 2004 08:45:42 GMT GetRAW for Windows will query any web server on any given port for banner, date, server, content modification, ETag, Accept-Range, Content Length, current connection and content. Uses the perl IO::Socket::INET module. Includes source and win32 executable. http://packetstormsecurity.org/files/32451/Trustscn_6.4_b85.exe http://packetstormsecurity.org/files/32451/Trustscn_6.4_b85.exe http://packetstormsecurity.org/files/32451/Trustscn_6.4_b85.exe.html Tue, 06 Jan 2004 00:26:36 GMT TrustSight Security Scanner 6.4 Build 85 is a new version of the web security scanner originally known as the Stealth HTTP Security Scanner. It provides 13,000 http vulnerability checks and runs on Win32 and Linux under Wine. http://packetstormsecurity.org/files/32435/wts_bo.c http://packetstormsecurity.org/files/32435/wts_bo.c http://packetstormsecurity.org/files/32435/wts_bo.c.html Sat, 03 Jan 2004 10:46:23 GMT Jordan Windows Telnet Server v1.2 remote buffer overflow exploit. Binds a shell on port 9191. Tested on Win32 and Unix. http://packetstormsecurity.org/files/32431/Encoder.zip http://packetstormsecurity.org/files/32431/Encoder.zip http://packetstormsecurity.org/files/32431/Encoder.zip.html Sat, 03 Jan 2004 10:23:56 GMT Encoder v0.3 is a small program written for MS Visual C which encodes shellcode to not include certain characters using an XOR encoder / decoder. Works with x86 Windows, Linux, and BSD. Includes source and Win32 binary.