Jump to content

Kev

Active Members
 View Profile  See their activity

  • Posts

    1022

  • Joined

  • Days Won

    54

Kev last won the day on December 8

Kev had the most liked content!

7 Followers

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

Kev's Achievements

Experienced

Experienced (11/14)

  • Reacting Well Rare
  • Dedicated Rare
  • First Post Rare
  • Collaborator Rare
  • Posting Machine Rare

Recent Badges

469

Reputation

  1. Kev started following TrafficWatch - TrafficWatch, A Packet Sniffer Tool, Allows You To Monitor And Analyze Network Traffic From PCAP Files , Simple Universal Fortigate Fuzzer Extension Script , Ascii or something challenge and 5 others
  2. Kev
    This is a small extension script to monitor suff.py, or the Simple Universal Fortigate Fuzzer, and to collect crashlogs for future analysis. Download: suff_monitor.py.txt Mirror: #!/usr/bin/env python3 # suff_monitor.py -- basic monitoring for fuzzing scenarios (suff/burp/mutiny) # # -- updates -- # 22.11.2023 @ 02:23 :: shame init version ready to go # 21.11.2023 @ 19:18 :: log me if you can # 21.11.2023 @ 15:14 :: added: time, sleep, log2fp # 21.11.2023 @ 01:19 :: started this lame code # # idea - run suff_monitor.py against the box you're testing (fgvm): # - add time to sleep and date to log updates # - log in (so same creds as for suff.py, postauth testing, etc) # - get ver/info -> log2file # ** (should be ready at this stage, so): ** # while true: # check_diag_deb(+log2file,+a) # sleep 1 # end_of_file # # ------------- # # for more details: # https://code610.blogspot.com/2023/12/monitoring-suff.html # https://code610.blogspot.com/2023/04/fuzzing-fortigate-7.html # https://github.com/c610/free/blob/master/suff-v0.1.py # https://github.com/c610/free/blob/master/fg7stack_poc.py # # from netmiko import Netmiko import sys,os import time import paramiko ################### ############## ######## #### ## # fplog = open('saveme.log','+a') command = 'diag debug crashlog show' # did you enable logs in your FGVM? def connect_to_crashlog(): # set up for the target try: fw_01 = { 'host':'192.168.56.231', 'username':'admin', 'password':'P@ssw0rd', 'device_type':'fortinet', 'timeout':3 } net_connect = Netmiko( **fw_01 ) print("+ Connected to FG!") print("+ logfile: savethis.log") fplog.write('----starting suff_monitor.py ----\n') fplog.write(net_connect) fplog.write('\n-- results below: --\n') # if we're connected: check diag debug crashlog (or any other you'd like to) send_logcheck_cfg = net_connect.send_config_set( command ) fplog.write(send_logcheck_cfg) fplog.write('\n---- next while loop ----\n') print("+ looks like we just sent this command:\n\t%s\n\n" % send_logcheck_cfg ) print("send_init_cfg finished") ## check crashlog finished except paramiko.ssh_exception.SSHException as e: print(" > connection error: %s" % e) except ConnectionResetError as e: print("> connection error2: %s" % e) except UnboundLocalError as e: print("UnboundLocalError: local variable 'net_connect' referenced before assignment") print("> unbound variable error: %s" % e) ## end of connect_to_crashlog() # ########## #### main ########## print('y0;[') print('starting: connect_to_crashlog()') while True: print('debug: connect_to_crashlog() starting...') connect_to_crashlog() print("... sleeping 1...") time.sleep(1) print('sleep done. next True iter...') #### print("finished main()") Source
  3. Kev
    Posibil sa le gasesti pe aici. Spor la treabă!
  4. Kev
    CMS theme detector. O cumperi.
  5. Kev
    A sarit din slot. Thanks
  6. Kev
    Salut? Am avut si in trecut aceasta problema insa acum a cazut desktop-ul de pe birou, primesc aceeasi eroare, sunt 3 beep-uri primul din lista este bateria, al doilea din lista cu 3 beep-ri este ca se poate fi ars un tranzistor ceva. Intrebarea ar fi: se potrivesc bateriile de la Acer, Lenovo, DELL si viceversa? Cumpar si pasta daca e cazut. Stima
  7. Kev
  8. Kev
    Daca nu e furat ai support https://www.getac.com/intl/help-support/getac-system-recovery/
  9. Kev
    Salut, caut de ceva timp o aplicatoie call changing voice in timp real de la Madonna pana la Optimus Prime, in timp real, free, ce am gasit in G store sunt doar recordere si fake call... Stiu sigur ca sunt, m-a sunat un tovaras sa me intalnim la suc... Multumesc
  10. Kev
    TrafficWatch TrafficWatch, a packet sniffer tool, allows you to monitor and analyze network traffic from PCAP files. It provides insights into various network protocols and can help with network troubleshooting, security analysis, and more. Protocol-specific packet analysis for ARP, ICMP, TCP, UDP, DNS, DHCP, HTTP, SNMP, LLMNR, and NetBIOS. Packet filtering based on protocol, source IP, destination IP, source port, destination port, and more. Summary statistics on captured packets. Interactive mode for in-depth packet inspection. Timestamps for each captured packet. User-friendly colored output for improved readability. Requirements Python 3.x scapy argparse pyshark colorama Installation Clone the repository: git clone https://github.com/HalilDeniz/TrafficWatch.git Navigate to the project directory: cd TrafficWatch Install the required dependencies: pip install -r requirements.tx Usage python3 trafficwatch.py --help usage: trafficwatch.py [-h] -f FILE [-p {ARP,ICMP,TCP,UDP,DNS,DHCP,HTTP,SNMP,LLMNR,NetBIOS}] [-c COUNT] Packet Sniffer Tool options: -h, --help show this help message and exit -f FILE, --file FILE Path to the .pcap file to analyze -p {ARP,ICMP,TCP,UDP,DNS,DHCP,HTTP,SNMP,LLMNR,NetBIOS}, --protocol {ARP,ICMP,TCP,UDP,DNS,DHCP,HTTP,SNMP,LLMNR,NetBIOS} Filter by specific protocol -c COUNT, --count COUNT Number of packets to display To analyze packets from a PCAP file, use the following command: python trafficwatch.py -f path/to/your.pcap To specify a protocol filter (e.g., HTTP) and limit the number of displayed packets (e.g., 10), use: python trafficwatch.py -f path/to/your.pcap -p HTTP -c 10 Options -f or --file: Path to the PCAP file for analysis. -p or --protocol: Filter packets by protocol (ARP, ICMP, TCP, UDP, DNS, DHCP, HTTP, SNMP, LLMNR, NetBIOS). -c or --count: Limit the number of displayed packets. Contributing Contributions are welcome! If you want to contribute to TrafficWatch, please follow our contribution guidelines. Contact If you have any questions, comments, or suggestions about Dosinator, please feel free to contact me: LinkedIn: Halil Ibrahim Deniz TryHackMe: Halilovic Instagram: deniz.halil333 YouTube: Halil Deniz Email: halildeniz313@gmail.com License This project is licensed under the MIT License. Download: TrafficWatch-main.zip or git clone https://github.com/HalilDeniz/TrafficWatch.git Source
  11. Kev
    This archive contains all of the 305 exploits added to Packet Storm in August, 2023. Content: Directory of 2308-exploits 09/04/2023 06:53 AM <DIR> . 09/04/2023 06:53 AM <DIR> .. 08/07/2023 06:56 PM 1,403 aca2140-disclose.txt 08/03/2023 05:00 PM 1,173 academylms60-xss.txt 08/21/2023 07:23 PM 1,678 academylms61-uploadxss.txt 08/04/2023 05:46 PM 1,336 adisconloganalyzer4113-xss.txt 08/14/2023 08:13 PM 5,303 advantecheki12-xss.txt 08/01/2023 07:36 PM 1,353 amss61-sql.txt 08/08/2023 06:30 PM 1,354 amss611-sql.txt 08/30/2023 06:12 PM 11,046 apache_nifi_h2_rce.rb.txt 08/15/2023 06:20 PM 651 bdms10-xss.txt 08/25/2023 10:02 PM 2,139 bds32-sql.txt 08/14/2023 07:58 PM 1,725 bookingwizz601-disclose.txt 08/04/2023 05:39 PM 3,338 campcodesomws33-xss.txt 08/02/2023 06:49 PM 1,237 cca30-sql.txt 08/21/2023 07:19 PM 860 cct95-addadmin.txt 08/02/2023 06:47 PM 5,652 cdpiws325-xsrf.txt 08/24/2023 05:27 PM 7,835 chamilo_unauth_rce_cve_2023_34960.rb.txt 08/09/2023 06:39 PM 1,636 chatonesnps16-addadmin.txt 08/09/2023 06:39 PM 1,410 cheveretocms370-sql.txt 08/04/2023 06:49 PM 5,348 citrix_formssso_target_rce.rb.txt 08/01/2023 07:37 PM 1,203 cityvarietycms12-sql.txt 08/01/2023 07:38 PM 1,414 cityvarietylms22-xss.txt 08/07/2023 06:15 PM 1,533 cms351-sql.txt 08/08/2023 06:36 PM 1,436 cmsbmgii40-sql.txt 08/07/2023 06:25 PM 1,526 cmsbmgii40-xss.txt 08/07/2023 06:30 PM 1,568 cmsgeneticscentre401-sql.txt 08/02/2023 06:23 PM 1,539 cmspro50-sql.txt 08/01/2023 07:27 PM 1,699 cmssite10-escalate.txt 08/01/2023 07:25 PM 2,326 cmsusina223-xsrf.txt 08/01/2023 07:28 PM 1,574 codoforum34-upload.txt 08/07/2023 06:10 PM 1,717 codoforum521-upload.txt 08/01/2023 07:29 PM 1,575 comfexcms2010-sql.txt 08/02/2023 06:24 PM 1,609 comfexcms2010-xss.txt 08/01/2023 07:33 PM 1,433 composeitcms20-secrets.txt 08/02/2023 06:28 PM 1,545 composeitcms20-sql.txt 08/01/2023 07:33 PM 1,533 conferencemgmtsys351-sql.txt 08/01/2023 07:35 PM 1,540 connectixboards052-rfi.txt 08/02/2023 06:33 PM 1,559 connectixboards052-sql.txt 08/01/2023 07:41 PM 1,190 cooladmin120-sqlbypass.txt 08/02/2023 06:45 PM 1,624 couponscms400-redirect.txt 08/07/2023 06:24 PM 1,624 couponscms600-redirect.txt 08/09/2023 06:41 PM 1,624 couponscms700-redirect.txt 08/04/2023 06:16 PM 5,150 courierdeprixa25-xsrf.txt 08/02/2023 06:49 PM 1,631 cpcms102-xss.txt 08/22/2023 06:12 PM 1,934 cpg10-sql.txt 08/02/2023 07:09 PM 2,041 cpgpr8120-exec.txt 08/21/2023 07:21 PM 1,824 creditlite154-sql.txt 08/02/2023 06:50 PM 1,600 crmea90-traversal.txt 08/02/2023 06:51 PM 1,350 cryptolivecms10-sql.txt 08/15/2023 05:19 PM 1,573 csccms100-insecure.txt 08/07/2023 06:33 PM 1,527 csccms100-sql.txt 08/02/2023 06:45 PM 1,933 ctvdc142-download.txt 08/07/2023 06:33 PM 1,903 cvanavdawcms01-xss.txt 08/07/2023 06:35 PM 1,491 cyberinfinitecms10-sql.txt 08/09/2023 06:49 PM 1,679 dabcms100-xss.txt 08/08/2023 06:26 PM 2,387 datadrivencms041-disclose.txt 08/07/2023 06:54 PM 1,508 datalifeengine10-sql.txt 08/09/2023 06:44 PM 1,568 datoocds10-htmlinject.txt 08/15/2023 05:20 PM 1,448 datoocds10-insecure.txt 08/14/2023 07:54 PM 1,646 dbcinfotechcms20-reinstall.txt 08/07/2023 06:53 PM 1,557 dbcompcms12-xss.txt 08/09/2023 06:48 PM 1,402 dbgcms10-xss.txt 08/09/2023 06:47 PM 1,375 deprixa325-sql.txt 08/10/2023 05:31 PM 5,425 deprixa325-xsrf.txt 08/10/2023 05:33 PM 1,623 desenvolvidoc3imcms20-xss.txt 08/09/2023 06:51 PM 2,580 dexxcmshsb223-upload.txt 08/04/2023 06:04 PM 1,080 dieboldnvvc531-dllhijack.txt 08/11/2023 03:54 PM 1,610 digasell100-xss.txt 08/10/2023 05:38 PM 1,579 digiaselldsphps100-sql.txt 08/10/2023 05:41 PM 1,505 digishacms127-sql.txt 08/10/2023 05:43 PM 1,817 dmiscrilms20-sql.txt 08/10/2023 05:42 PM 1,381 doktephpsnp118-xss.txt 08/22/2023 06:19 PM 2,049 dolibarr1701-xss.txt 08/10/2023 05:33 PM 1,245 domacms10-xss.txt 08/22/2023 06:05 PM 2,068 doorgets12-disclose.txt 08/24/2023 05:09 PM 1,929 doorgetscms12-shell.txt 08/15/2023 05:23 PM 1,963 doorgetscms70-shell.txt 08/21/2023 07:07 PM 2,068 doorgetscms70admin-disclose.txt 08/08/2023 06:31 PM 4,547 doubleclickadmin1-xsrf.txt 08/10/2023 05:45 PM 1,600 driverpacksolutioncms1711108-xss.txt 08/10/2023 06:00 PM 2,535 dynamicjournalcms25-disclose.txt 08/10/2023 05:59 PM 1,560 e2distrcms2853-disclose.txt 08/31/2023 06:24 PM 18,046 eabws16-overflowxss.txt 08/14/2023 07:16 PM 1,360 easy2pilot7-sql.txt 08/11/2023 03:57 PM 1,517 easymemberpro30-idor.txt 08/14/2023 07:34 PM 2,052 easypxcms060204-xss.txt 08/14/2023 07:34 PM 8,071 ebizcms20-xsrf.txt 08/14/2023 07:56 PM 1,502 ecommgrowiseicms2-insecure.txt 08/14/2023 07:38 PM 1,445 ecommresp12-idor.txt 08/14/2023 07:39 PM 1,663 edencms102-xss.txt 08/15/2023 06:07 PM 3,435 efuncms50-xml.txt 08/08/2023 06:32 PM 1,249 ehatocms10-redirect.txt 08/09/2023 06:53 PM 1,400 ehatocms10-xss.txt 08/15/2023 06:09 PM 1,352 eitubeyoutubeapi3-sql.txt 08/16/2023 07:16 PM 1,589 eitubeyoutubeapi3-xss.txt 08/15/2023 06:09 PM 1,418 ejournalhomoeocms203-sql.txt 08/21/2023 07:09 PM 2,891 elevelcms10-sql.txt 08/15/2023 06:15 PM 1,533 elitecmspro201-sql.txt 08/15/2023 06:15 PM 1,246 elitius10-disclose.txt 08/21/2023 07:02 PM 1,592 emaarreagds57-shell.txt 08/09/2023 07:08 PM 1,133 emagicdcms60-exec.txt 08/16/2023 07:19 PM 1,612 emhcms01-xss.txt 08/08/2023 06:35 PM 1,426 emiswebschoolcms1-sql.txt 08/08/2023 06:37 PM 1,369 eneblurcms10-sql.txt 08/22/2023 05:58 PM 1,449 enmsagl116-disclose.txt 08/14/2023 08:05 PM 4,779 enum_azuresubdomains.rb.txt 08/16/2023 07:19 PM 1,639 epartenairelms100-xss.txt 08/11/2023 03:59 PM 1,475 epm11-disclose.txt 08/15/2023 06:11 PM 1,573 epmcrm31-insecure.txt 08/16/2023 07:20 PM 2,462 erimupload4-disclose.txt 08/16/2023 07:14 PM 1,579 etiscrm17-sql.txt 08/15/2023 05:27 PM 1,571 etiscrm17-traversal.txt 08/14/2023 07:39 PM 1,922 etiscrm17-xss.txt 08/21/2023 07:14 PM 1,588 eventlocationscms101-shell.txt 08/16/2023 07:21 PM 1,384 eventlocationscms101-xss.txt 08/16/2023 07:21 PM 1,452 evsanatiradyo10-insecure.txt 08/21/2023 07:15 PM 2,037 evsanatiradyo10-shell.txt 08/16/2023 07:23 PM 2,552 ewncms40-disclose.txt 08/11/2023 04:02 PM 1,603 ewp211-xss.txt 08/21/2023 07:17 PM 1,457 faramelkestatecms150-disclose.txt 08/23/2023 04:28 PM 1,492 fasttechcms10-sql.txt 08/24/2023 05:10 PM 3,856 fasttechcms10-xsrf.txt 08/22/2023 06:04 PM 1,827 fireshopacms23-upload.txt 08/22/2023 06:06 PM 1,621 fixbookrsmt22-disclose.txt 08/23/2023 04:30 PM 1,607 fixbookrsmt30-disclose.txt 08/11/2023 04:07 PM 1,361 flatapppad10-sql.txt 08/22/2023 06:07 PM 1,599 fleetcartles112-insecure.txt 08/22/2023 06:08 PM 1,657 flightpathlms482-idor.txt 08/23/2023 04:31 PM 1,714 flightpathlms482-xss.txt 08/24/2023 05:10 PM 1,657 flightpathlms50rc2-idor.txt 08/28/2023 05:30 PM 1,581 flightpathlms50rc2-xss.txt 08/22/2023 06:13 PM 1,479 fluentcms100-sql.txt 08/22/2023 06:00 PM 1,620 fmits20-sql.txt 08/22/2023 06:15 PM 1,511 foccuswebcms01-xss.txt 08/22/2023 06:15 PM 1,821 fogforum08-xss.txt 08/23/2023 04:37 PM 1,572 foodieecms101-idor.txt 08/23/2023 04:36 PM 1,688 foodieeofowa100-insecure.txt 08/29/2023 06:49 PM 1,705 foodieeofowa100-xss.txt 08/23/2023 04:48 PM 1,568 formalms14-disclose.txt 08/23/2023 04:49 PM 1,879 forumfiresoftboard030-xss.txt 08/23/2023 04:50 PM 1,474 freshrss1111-htmlinject.txt 08/25/2023 09:50 PM 1,723 gdi20-htmlinject.txt 08/28/2023 05:30 PM 1,746 gdi20-xss.txt 08/01/2023 07:44 PM 3,458 gdm2522-overflow.txt 08/23/2023 04:52 PM 1,617 geeklog210b1-disclose.txt 08/24/2023 05:26 PM 1,627 geeklog210b1-sql.txt 08/23/2023 04:52 PM 1,504 gensecurity40-sql.txt 08/24/2023 05:26 PM 1,701 gensecurity40-xss.txt 08/25/2023 09:49 PM 2,200 getsimplecms332-xss.txt 08/25/2023 09:47 PM 1,301 ggcorporatecms10-sql.txt 08/23/2023 04:50 PM 1,520 ggcorporatecms10-xss.txt 08/22/2023 06:11 PM 1,940 gmsmse10-sql.txt 08/08/2023 06:54 PM 795 gnomefiles434-escalate.txt 08/29/2023 07:54 PM 6,438 gomplayer23905360-mitm.txt 08/24/2023 05:25 PM 1,472 gracehrm103-traversal.txt 08/25/2023 09:53 PM 1,392 gravigracms10-sql.txt 08/29/2023 08:02 PM 1,785 grawlix151-xss.txt 08/25/2023 09:54 PM 1,655 grawlixcms111-xss.txt 08/17/2023 06:40 PM 2,367 greenshot_deserialize_cve_2023_34634.rb.txt 08/11/2023 04:06 PM 1,224 greeva20-sql.txt 08/25/2023 09:55 PM 1,563 groupoffice3421-traversal.txt 08/10/2023 06:19 PM 5,344 GS20230810151726.tgz 08/10/2023 06:23 PM 4,814 GS20230810152050.tgz 08/10/2023 06:26 PM 4,464 GS20230810152505.tgz 08/10/2023 06:29 PM 4,823 GS20230810152741.tgz 08/18/2023 05:28 PM 4,143 GS20230818142737.tgz 08/25/2023 09:56 PM 1,610 gustorecipesmgmt151-insecure.txt 08/28/2023 05:31 PM 1,660 gustorecipesmgmt151-xss.txt 08/16/2023 07:16 PM 8,039 h2_webinterface_rce.rb.txt 08/28/2023 05:31 PM 1,505 haascms10-xss.txt 08/28/2023 05:33 PM 1,523 haraj11-addadmin.txt 08/29/2023 06:44 PM 1,797 hasanmwb1-addadmin.txt 08/28/2023 05:33 PM 1,450 hasanmwb1-xss.txt 08/11/2023 04:08 PM 1,341 hellogtxtpcrm16-idor.txt 08/28/2023 05:34 PM 1,613 hesktrlcms1-xss.txt 08/28/2023 05:37 PM 1,366 highpluscms013-sql.txt 08/29/2023 06:45 PM 1,872 hloun100-insecure.txt 08/28/2023 05:40 PM 1,688 hmsrps157-xss.txt 08/28/2023 05:34 PM 1,409 hospitalhms2-sql.txt 08/28/2023 05:36 PM 1,617 hospitalhms27-sql.txt 08/29/2023 06:43 PM 1,409 hpboost40-addadmin.txt 08/29/2023 06:48 PM 1,517 hrmsaas219-insecure.txt 08/29/2023 06:50 PM 1,366 hsbookingcms279-sql.txt 08/29/2023 06:51 PM 1,925 hudaallahlinkercms10-xss.txt 08/29/2023 06:52 PM 1,659 humanresourcepms14-disclose.txt 08/29/2023 06:56 PM 1,643 humbertocaldascms013-xss.txt 08/29/2023 07:34 PM 1,535 humhub1313-traversal.txt 08/16/2023 07:31 PM 1,635 hyiprio21-upload.txt 08/11/2023 04:08 PM 1,430 i2softcms20-idor.txt 08/29/2023 07:35 PM 1,716 ibillingcrm450-idor.txt 08/29/2023 07:36 PM 2,404 igallery34db-disclose.txt 08/29/2023 07:37 PM 1,411 imaxcms10-sql.txt 08/29/2023 07:37 PM 1,613 imghosting12-xss.txt 08/31/2023 06:09 PM 1,502 innovinscms47-sql.txt 08/22/2023 06:23 PM 1,824 inosoftvisin7-escalate.txt 08/31/2023 06:04 PM 1,875 interphoto230-shell.txt 08/31/2023 06:05 PM 1,399 invasordiagonalcms10-xss.txt 08/30/2023 06:16 PM 1,585 iqmedyacms20-xss.txt 08/31/2023 06:05 PM 1,625 islamcms10-exec.txt 08/02/2023 06:58 PM 918 joomlajlexgb164-xss.txt 08/01/2023 08:42 PM 1,027 joomlajlexreview601-xss.txt 08/28/2023 05:39 PM 3,711 jorani103-xss.txt 08/21/2023 07:29 PM 5,356 jorani_path_trav.rb.txt 08/30/2023 06:01 PM 2,888 juniper-rce_cve-2023-36844-main.zip 08/23/2023 04:59 PM 1,592 KIS-2023-05.txt 08/23/2023 05:00 PM 1,610 KIS-2023-06.txt 08/23/2023 05:02 PM 3,683 KIS-2023-07.txt 08/23/2023 05:04 PM 1,768 KIS-2023-08.txt 08/23/2023 05:05 PM 1,495 KIS-2023-09.txt 08/18/2023 05:42 PM 6,778 KL-001-2023-001.txt 08/18/2023 05:44 PM 8,470 KL-001-2023-002.txt 08/18/2023 05:50 PM 6,545 KL-001-2023-003.txt 08/04/2023 06:00 PM 3,767 kolibri20-overflow.txt 08/09/2023 06:55 PM 1,907 lucee54217-xss.txt 08/11/2023 04:13 PM 1,142 maltrail053-exec.txt 08/17/2023 06:37 PM 4,233 maltrail_rce.rb.txt 08/09/2023 07:12 PM 6,152 metabase_setup_token_rce.rb.txt 08/07/2023 06:56 PM 875 moosocial318-xss.txt 08/01/2023 07:42 PM 1,809 odlm10-sql.txt 08/31/2023 06:08 PM 1,435 oidg10-sqlshell.txt 08/11/2023 04:09 PM 687 outsystemsss115330-dllhijack.txt 08/22/2023 06:10 PM 1,362 ovoompcms333-sql.txt 08/04/2023 06:05 PM 660 ozekismsgateway103208-fileread.txt 08/02/2023 07:02 PM 1,179 perchcms32-xss.txt 08/14/2023 08:08 PM 5,649 phoenixctcc2-xssdos.txt 08/22/2023 06:18 PM 971 phpjabbersbds32-xssxsrf.txt 08/31/2023 06:13 PM 1,944 phpjabbersprs10-xss.txt 08/09/2023 06:58 PM 1,110 phpjabbersvrs40-xsrf.txt 08/03/2023 04:47 PM 965 phpjabc50-xss.txt 08/03/2023 05:09 PM 1,789 phpjbrs11-sql.txt 08/03/2023 04:49 PM 954 phpjbrs11-xss.txt 08/03/2023 04:56 PM 876 phpjcb10-xss.txt 08/03/2023 04:54 PM 895 phpjncb10-xss.txt 08/03/2023 04:57 PM 905 phpjrpb20-xss.txt 08/03/2023 04:53 PM 748 phpjsbs10-xss.txt 08/03/2023 04:54 PM 884 phpjservicebs10-xss.txt 08/03/2023 04:57 PM 869 phpjtb20-xss.txt 08/29/2023 06:47 PM 1,495 phpvalleymj201-idor.txt 08/09/2023 07:10 PM 2,642 pyrocms39-ssti.txt 08/15/2023 06:32 PM 3,534 raspap_rce.rb.txt 08/11/2023 04:11 PM 1,417 requestsbaskets121-ssrf.txt 08/04/2023 05:51 PM 8,952 reyeeos12041614-mitm.txt 08/03/2023 04:58 PM 3,053 savantws31-overflow.txt 08/04/2023 05:45 PM 2,123 shellypro4pm0110-bypass.txt 08/07/2023 06:57 PM 1,211 socialcommerce316-xss.txt 08/28/2023 05:44 PM 1,248 spacartecomcm1903-sql.txt 08/28/2023 05:43 PM 1,018 spacartecomcms1903-xss.txt 08/04/2023 06:50 PM 7,695 subrion_cms_file_upload_rce.rb.txt 08/16/2023 07:48 PM 6,878 SYSS-2022-052.txt 08/16/2023 07:51 PM 6,276 SYSS-2022-054.txt 08/16/2023 07:44 PM 7,781 SYSS-2022-055.txt 08/04/2023 06:54 PM 5,269 SYSS-2023-011.txt 08/11/2023 04:14 PM 663 systemd246-escalate.txt 08/22/2023 06:09 PM 1,292 taskhubcrmtool286-sql.txt 08/11/2023 04:16 PM 2,860 tplinkarcherax21-exec.txt 08/01/2023 08:43 PM 4,404 TRSA-2303-01.txt 08/22/2023 06:28 PM 2,228 tsplus1600-insecure.txt 08/22/2023 06:30 PM 4,677 tsplus1600f-insecure.txt 08/22/2023 06:35 PM 4,997 tsplus160214-inscure.txt 08/24/2023 05:20 PM 989 urlums30-sql.txt 08/24/2023 05:22 PM 1,067 urlums30-xss.txt 08/01/2023 08:16 PM 1,646 uvdesk113-shell.txt 08/24/2023 05:19 PM 6,586 uvdesk114-xss.txt 08/08/2023 06:40 PM 1,351 videoflixcms13-insecure.txt 08/04/2023 06:09 PM 1,353 videoplay130-insecure.txt 08/04/2023 03:22 PM 1,345 videoprocms20-insecure.txt 08/08/2023 06:42 PM 1,078 videowhisperconf101-xss.txt 08/04/2023 05:58 PM 1,319 virtualsnipersdms10-sql.txt 08/08/2023 06:38 PM 1,231 virtuescpanelcms10-sql.txt 08/04/2023 05:58 PM 1,231 virtuscpanelcms10-sql.txt 08/08/2023 06:47 PM 1,328 vnms22-insecure.txt 08/04/2023 05:48 PM 1,172 vocbseco13-disclose.txt 08/08/2023 06:38 PM 1,376 voodochat13-xss.txt 08/04/2023 05:54 PM 1,172 voodoochat10rc1b-disclose.txt 08/09/2023 06:38 PM 1,633 wchat16-htmlinject.txt 08/03/2023 04:56 PM 9,552 webcalendar13-xsrf.txt 08/03/2023 04:56 PM 1,165 webcodercms10-sql.txt 08/03/2023 04:55 PM 1,326 webcomcms10-sql.txt 08/04/2023 06:14 PM 3,228 webeditioncms2988-exec.txt 08/04/2023 06:15 PM 2,709 webeditioncms2988-xss.txt 08/03/2023 04:50 PM 1,277 webincorpcms10-xss.txt 08/03/2023 04:34 PM 1,192 webinstamm13-disclose.txt 08/04/2023 05:42 PM 1,614 webportalpeoplecms28-redirect.txt 08/07/2023 06:12 PM 1,623 webportalpeoplecms28-xss.txt 08/04/2023 05:41 PM 1,360 webstock30-idor.txt 08/04/2023 06:13 PM 1,280 webutler32-shell.txt 08/07/2023 06:12 PM 2,267 webwizforums1206-disclose.txt 08/04/2023 05:41 PM 1,207 webwizforums1206-sql.txt 08/03/2023 04:31 PM 1,445 wolfcms081-addadmin.txt 08/03/2023 04:28 PM 1,492 wondercms06beta-rfi.txt 08/03/2023 05:14 PM 1,085 wpadihavatp23-sql.txt 08/04/2023 06:33 PM 950 wpadivahatravel23-xss.txt 08/15/2023 06:03 PM 1,534 wpcore562-xpath.txt 08/22/2023 06:38 PM 4,160 wpdfc17012-escalate.txt 08/04/2023 06:20 PM 627 wpeventoncalendar44-idor.txt 08/04/2023 03:02 PM 744 wpeventoncalendar44post-idor.txt 08/04/2023 06:04 PM 2,860 wpforminator1246-shell.txt 08/04/2023 06:19 PM 5,791 wpninjaforms3625-xss.txt 08/01/2023 08:40 PM 4,751 wppgswi377-bypass.txt 08/10/2023 06:06 PM 4,414 wpwpm264-escalate.txt 08/04/2023 06:23 PM 1,001 xlightftp3936-overflow.txt 08/03/2023 04:27 PM 1,465 xzengine17-addadmin.txt 08/03/2023 04:26 PM 1,411 yourdoctorcms15-idor.txt 08/09/2023 07:14 PM 1,706 ZSL-2023-5782.txt 08/09/2023 07:18 PM 1,801 ZSL-2023-5783.txt 08/09/2023 07:19 PM 1,706 ZSL-2023-5784.txt 306 File(s) 683,391 bytes 2 Dir(s) 22,110,568,448 bytes free Download: 202308-exploits.tgz (197.4 KB) Source
  12. Kev
    Zen 2 flaw more simple than Spectre, exploit code already out there – get patching when you can AMD has started issuing some patches for its processors affected by a serious silicon-level bug dubbed Zenbleed that can be exploited by rogue users and malware to steal passwords, cryptographic keys, and other secrets from software running on a vulnerable system. Zenbleed affects Ryzen and Epyc Zen 2 chips, and can be abused to swipe information at a rate of at least 30Kb per core per second. That's practical enough for someone on a shared server, such as a cloud-hosted box, to spy on other tenants. Exploiting Zenbleed involves abusing speculative execution, though unlike the related Spectre family of design flaws, the bug is pretty easy to exploit. It is more on a par with Meltdown. Malware already running on a system, or a rogue logged-in user, can exploit Zenbleed without any special privileges and inspect data as it is being processed by applications and the operating system, which can include sensitive secrets, such as passwords. It's understood a malicious webpage, running some carefully crafted JavaScript, could quietly exploit Zenbleed on a personal computer to snoop on this information. The vulnerability was highlighted today by Google infosec guru Tavis Ormandy, who discovered the data-leaking vulnerability while fuzzing hardware for flaws, and reported it to AMD in May. Ormandy, who acknowledged some of his colleagues for their help in investigating the security hole, said AMD intends to address the flaw with microcode upgrades, and urged users to "please update" their vulnerable machines as soon as they are able to. Proof-of-concept exploit code, produced by Ormandy, is available here, and we've confirmed it works on a Zen 2 Epyc server system when running on the bare metal. While the exploit runs, it shows off the sensitive data being processed by the box, which can appear in fragments or in whole depending on the code running at the time. If you stick any emulation layer in between, such as Qemu, then the exploit understandably fails. What's hit? The bug affects all AMD Zen 2 processors including the following series: Ryzen 3000; Ryzen Pro 3000; Ryzen Threadripper 3000; Ryzen 4000 Pro; Ryzen 4000, 5000, and 7020 with Radeon Graphics; and Epyc Rome datacenter processors. AMD today issued a security advisory here, using the identifiers AMD-SB-7008 and CVE-2023-20593 to track the vulnerability. The chip giant scored the flaw as a medium severity one, describing it as a "cross-process information leak." A microcode patch for Epyc 7002 processors is available now. As for the rest of its affected silicon: AMD is targeting December 2023 for updates for desktop systems (eg, Ryzen 3000 and Ryzen 4000 with Radeon); October for high-end desktops (eg, Threadripper 3000); November and December for workstations (eg, Threadripper Pro 3000); and November to December for mobile (laptop-grade) Ryzens. Shared systems are the priority, it would seem, which makes sense given the nature of the design blunder. Ormandy noted at least some microcode updates from AMD are making their way into the Linux kernel. OpenBSD has some details here. Our advice is to keep an eye out for AMD's Zenbleed microcode updates, and for any security updates for your operating system, and apply them as necessary when available. There's no word yet on whether there will be a performance hit from installing these but we can imagine it'll mostly depend on your workloads. There is a workaround in the meantime, which Ormandy set out in his write-up of the bug (archived copy as his site was being pummeled with traffic earlier). This involves setting a control bit that disables some functionality that prevents exploitation. We imagine this dials back some of the speculative execution required to exploit Zenbleed, and this may cause some kind of performance hit. How does the bug work? For the full technical details, see the above write-up. But we'll summarize it here; understanding of how CPU cores work at the machine-code level is useful here. As a modern x86 processor family, AMD's Zen 2 chips offer vector registers, a bunch of long registers for performing operations. These vector registers are used by applications and operating systems to do all kinds of things, such as doing math operations and processing strings. As such these registers have all sorts of data flying through them, including passwords and keys. There is an instruction called vzeroupper [AMD PDF, page 860] that zeroes some of these vector registers, and it's used in OS and application library routines that are invoked hundreds or thousands of times a second by all processor cores in a box. For example, the strlen() function uses vzeroupper, and that's called quite a lot. When AMD's chips execute vzeroupper, they simply mark the affected registers as zero by setting a special bit, and then allow those registers to be used for other operations. If vzeroupper is speculatively executed – the processor anticipates it will need to run that instruction – it sets this zero bit and frees the registers in the register file for reuse. This can happen if the vzeroupper instruction lies right after a branch instruction; if the processor thinks the branch is unlikely to be taken, it will start the vzeroupper speculatively. As we saw with Spectre and Meltdown, CPUs do this kind of thing to gain big performance boosts. If the processor core realizes soon after, actually, it shouldn't have speculatively executed the vzeroupper instruction, it tries to rewind that decision and undo the zeroing by clearing the bit that indicates the registers are zero. Unfortunately, by that point, the registers are probably in use by some other code, and are no longer marked as zero, so their contents from the previous operation are now accessible to that other code. This is why the flaw is being compared to a use-after-free()-style vulnerability. With threads being scheduled all over the processor core complex, and with some clever exploit code, it is possible to cause vzeroupper to be incorrectly speculatively executed, rewound, and data to leak by observing the content of those vector registers. It relies on the speculative execution of vzeroupper and the fact that registers are stored in a large register file and reassigned to operations as needed. As Ormandy noted, "bits and bytes are flowing into these vector registers from all over your system constantly." He continued: His takeaway: "It turns out that memory management is hard, even in silicon." We've asked AMD for further comment. ® Via theregister.com
  13. Kev
    Shell confirms that employee personal information has been stolen after the Cl0p ransomware group leaked data allegedly stolen from the energy giant. Energy giant Shell has confirmed that personal information belonging to employees has been compromised as a result of the recent MOVEit Transfer hack. The Cl0p ransomware group exploited a zero-day vulnerability in the MOVEit managed file transfer (MFT) product to steal data from at least 130 organizations that had been using the solution. To date, at least 15 million individuals are believed to be impacted. The Russia-linked cybercrime gang has started naming victims that refused to negotiate on its leak website and Shell was among the first organizations. In a brief statement issued on Wednesday, Shell confirmed being hit by the MOVEit hack, clarifying that the MFT software was “used by a small number of Shell employees and customers”. “Some personal information relating to employees of the BG Group has been accessed without authorisation,” the company said. It’s unclear exactly what type of information has been compromised, but impacted individuals are being notified. Toll-free phone numbers where additional information can be obtained have been made available for employees in Malaysia, South Africa, Singapore, Philippines, UK, Canada, Australia, Oman, Indonesia, Kazakhstan, and Netherlands, suggesting that affected people may be from these countries. Shell pointed out that “this was not a ransomware event” — likely referring to the fact that file-encrypting malware was not deployed in the attack — and that there is no evidence of any other IT systems being affected. Shell confirmed the incident after the Cl0p cybercrime gang published files allegedly stolen from the firm. The group has made available 23 archive files labeled ‘part1’, which could suggest that they are in possession of more data. SecurityWeek was unable to download the archive files so it’s unclear what type of information they contain. When they published the Shell files, the cybercriminals noted that the company did not want to negotiate. It’s worth noting that Shell was also targeted by the Cl0p group in 2020, through a zero-day exploit targeting an Accellion file transfer service. The company confirmed at the time that the hackers had stolen personal and corporate data. Other major organizations that have been named by Cl0p and confirmed being affected by the recent MOVEit exploit include Siemens Energy, Schneider Electric, UCLA, and EY. Some government organizations have also admitted being hit, but the cybercriminals claim to have deleted all data obtained from these types of entities. Related: Norton Parent Says Employee Data Stolen in MOVEit Ransomware Attack Related: MOVEit Customers Urged to Patch Third Critical Vulnerability Via securityweek.com
  14. Kev
    incearca sa citesti fisierele cu un Live Linux
  15. Kev

    WebChat

    Kev posted a topic in Programe utile

    About project WebChat is a simple chatting app writed for learning purposes. It communicates between server and clients via SignalR with JWT authentication. Images below shows old version of UI. New design is dark and has login interface made with tsParticles library. Requirements & Installation To run this program you need npm, dotnet, and mssql server. Run the frontend (WebChat.Web directory) with npm server. Compile and run the backend. It should use https protocol and 5001 port. In other case, you must change hub connection settings in WebChat.Web/src/App.js. Compile solution with visual studio is recommended (instead of it you can use dotnet /build command). If you want change the DB connection string or JWT settings, look at WebChat/appsettings.Development.json file. Dont Read Me This chart perfectly shows my feelings about writing this program. 60.4% of fun 20.8% of try to not break up the keyboard 18.8% of boring ofc this values is percent of codes line. Writing 20% of the code in JS took about 70% of the time spent on project Download: WebChat-master.zip or git clone https://github.com/Reykez/WebChat.git Source
  16. Kev
    Simple python script to send commands prepared in text files mutated by an example payload string, e.g. multiple A or B letters. Using Fortigate's credentials, a user should be able to use this script to automate a basic fuzzing process for commands available in CLI. c@ubuntu:~/LABS/_SUFLET2$ cat suff.py #!/usr/bin/env python3 # suff.py -- simple universal fortigate fuzzer # # initial idea : xx.10.2022 # finished idea: xx.04.2023 # # special thanks goes to Reykez (https://github.com/Reykez) # # for more details: # https://code610.blogspot.com/2023/04/fuzzing-fortigate-7.html # from netmiko import Netmiko import sys,os import time import paramiko def readFile(filename): words = [] fileText = open(filename.strip(), 'r') for line in fileText.readlines(): for word in line.strip().split(): words.append(word.strip()) words.append('\n') return words ## def writeFile(words, filename): text = ''; for word in words: text += word; if word!='\n': text += ' ' ; f = open(filename, 'w') f.write(text) f.close() ## run modified payload: send is as cfg: fpread = open(filename, 'r') lines = fpread.read() command = lines print("DEBUG :::: type of: %s" % type(command) ) print( command ) print("DEBUG :::: eof\n") ## # set up for the target fw_01 = { 'host':'192.168.56.231', 'username':'admin', 'password':'admin', 'device_type':'fortinet' } # connecting to the target host try: net_connect = Netmiko( **fw_01 ) print("+ connected, checking prompt...") except paramiko.ssh_exception.SSHException as e: print(" > connection error: %s" % e) except ConnectionResetError as e: print("> connection error2: %s" % e) except UnboundLocalError as e: print("UnboundLocalError: local variable 'net_connect' referenced before assignment") print("> unbound variable error: %s" % e) print("... sleeping 1...") time.sleep(2) print("> sending fuzzed command...") send_init_cfg = net_connect.send_config_set( command ) # init_cfg... print("+ looks like we just sent this command:\n\t%s\n\n" % send_init_cfg ) ## finished fuzzed super-payload attack ## #### def modifyFilename(filename, number): name, extension = os.path.splitext(filename) return "{name}{uid}{extension}".format(name=name, uid=str(number).zfill(2), extension=extension) #### parse and validate command line args, proceed program args = sys.argv[1:] filename = args[0] if 0 in range(len(args)) else input ('Filename?') textToReplace = args[1] if 1 in range(len(args)) else input ('text to replace? ') outputBasename = args[2] if 2 in range(len(args)) else input ('output basename') words = readFile(filename); # reaplce any occurency and print fileIndex = 0 for wordIndex in range(len(words)): if words[wordIndex] == '\n': continue fileIndex += 1 wordsCopy = words.copy() try: wordsCopy[wordIndex] = textToReplace writeFile(wordsCopy, modifyFilename(outputBasename, fileIndex ) ) except UnboundLocalError as e: print("UnboundLocalError: local variable 'net_connect' referenced before assignment") print("> unbound variable error: %s" % e) pass print('Successfully generated', modifyFilename(outputBasename, 1), '-', modifyFilename(outputBasename, fileIndex), ' files!') Source
×
×
  • Create New...