Showing 1 - 14 of 14

Files from poplix

virtuozzo-xsrf.txt: Posted Apr 4, 2008; Authored by poplix | Site px.dynalias.org; Virtuozzo from Parallels suffers from cross site request forgery vulnerabilities.; tags | advisory, vulnerability, csrf; SHA-256 | ebaad3d635c352d3c9f1ac5fc2240d69b74469fbafa8caa44dfa42135de15d11; Download | Favorite | View

pdflib-overflows.txt: Posted Dec 24, 2007; Authored by poplix | Site px.dynalias.org; pdflib, a library used for generating PDFs on the fly, suffers from multiple buffer overflow vulnerabilities due to the use of strcpy().; tags | advisory, overflow, vulnerability; SHA-256 | cc8dcb150298922e6a2a292f9c663f4dbff95dc657c445fc35cdee5ee09e6763; Download | Favorite | View

gwcheck.c: Posted Dec 24, 2007; Authored by poplix | Site px.dynalias.org; gwcheck is a simple program that checks if a host in an ethernet network is a gateway to Internet.; tags | tool, scanner; systems | unix; SHA-256 | bbd330c1df80d2586e3ecb1e5671a1a0b3aef4ffd54dd4ef27c45ffaaa50491c; Download | Favorite | View

gmailsteal_remote.scpt.txt: Posted Sep 30, 2007; Authored by poplix | Site px.dynalias.org; This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and sends it to a logging server by creating an hidden iframe into G-Mail's page.; tags | exploit, javascript; SHA-256 | 20de0e897ec70cae2d19020dbc28f0afb395ff11a21cf566e2d898f6373105e1; Download | Favorite | View

gmailsteal_local.scpt.txt: Posted Sep 30, 2007; Authored by poplix | Site px.dynalias.org; This script can be used to steal G-Mail's keychained password by injecting javascript into Safari. When executed it opens G-Mail's login page, reads the saved password and prompts it into an alert box.; tags | exploit, javascript; SHA-256 | d1666deab432edbc9e59a484712e616f3e4b12ccc20689e06d1d5c0bc471f7ea; Download | Favorite | View

cotv2-dos.txt: Posted Feb 6, 2007; Authored by poplix; cotv 2.0 suffers from a client-side denial of service vulnerability due to a lack of validation. Demonstration exploit included.; tags | exploit, denial of service; SHA-256 | f707ee93bda1d6d72d269716afca6da52d47a31e6d5abc8bec288f711a10b6e2; Download | Favorite | View

dlink-arp.txt: Posted Dec 12, 2006; Authored by poplix; The D-LINK DWL-2000AP+ with firmware version 2.11 is prone to two remote denial of service vulnerabilities because it fails to handle arp flooding.; tags | advisory, remote, denial of service, vulnerability; SHA-256 | 87d03a41d7205746c6fdc2717648002c7605bc5def176cb29db02f70e7827bcf; Download | Favorite | View

eNM-0.0.1.txt: Posted Oct 31, 2006; Authored by poplix; easy notes manager (eNM) version 0.0.1 is affected by multiple SQL injection issues. POC included that demonstrates how to bypass authentication.; tags | exploit, sql injection; SHA-256 | 8bf434113a79d20b0e13eca016af6e6321a692aac41cb63c7a6ec3adf04d23fd; Download | Favorite | View

tripp-alpha0.2.tar.gz: Posted Jun 26, 2006; Authored by poplix | Site tripp.dynalias.org; TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.; Changes: The ip options handler, a virtual clock for TCP timestamp, a packet delayer, a packet marker, the ability to match packets randomly, the ability to limit rewriting to a specific host only, the ability to pass rules directly via command line, the ability to set payload to empty packets were added. Various other enhancements and changes.; tags | spoof, tcp; SHA-256 | 378bab5802d5cce78688708b5c718ebf003e8ea399862c886cc986351efdd9d9; Download | Favorite | View

payload-rewrite_exploit.txt: Posted Jun 26, 2006; Authored by poplix; Small whitepaper discussing how to use payload rewriting to exploit remote buffer overflow vulnerabilities.; tags | paper, remote, overflow, vulnerability; SHA-256 | 0f69f97a695d554036455180134044f578440c4022112040028883dd582a2d05; Download | Favorite | View

tripp-alpha0.1.tar.gz: Posted Feb 22, 2006; Authored by poplix | Site tripp.dynalias.org; TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.; tags | spoof, tcp; SHA-256 | 41978f67ad0896e10ec10edd525909b6563e02ab70ca5c0e75d659ae9bfd92f0; Download | Favorite | View

p0fspoof.txt: Posted Feb 14, 2006; Authored by poplix | Site tripp.dynalias.org; A paper discussing passive OS fingerprinting and spoofing OpenBSD pf "os" rulesets.; tags | spoof; systems | openbsd; SHA-256 | 0d569aa54bb77d9a75c4c38062ec73498e406c7673560bff04cc7b95c7368e3d; Download | Favorite | View

authsyn.tgz: Posted Feb 14, 2006; Authored by poplix | Site tripp.dynalias.org; proof-of-concept tool for performing passive OS fingerprint spoofing to bypass OpenBSD pf firewall rules.; tags | spoof; systems | openbsd; SHA-256 | 5a2ede5d7226dfc63dbb8d460f5f043f9f8b45d0fee869848ed3de681903dd28; Download | Favorite | View

tripp_test.1c.tar.gz: Posted May 7, 2005; Authored by poplix | Site tripp.dynalias.org; TRIPP is a utility to rewrite outgoing IP packets. Since it can rewrite both header and payload data, it combines functionality found in iptables as well as netsed. This can be useful for performing replay attacks, altering your own OS fingerprint, or for bypassing remote firewalls.; tags | remote; systems | unix; SHA-256 | dd20c3a4d3957262197fe88667340ecfabf33650727217079e673d6d2796ef11; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days