raptor_infiltrate20
exploits
raptor_infiltrate20 | exploits | |
---|---|---|
1 | 3 | |
27 | 574 | |
- | - | |
2.8 | 2.8 | |
4 months ago | 4 months ago | |
C | C | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
raptor_infiltrate20
exploits
-
Nothing new under the Sun - Discovering and exploiting a CDE bug chain
I have identified multiple security vulnerabilities that are exploitable via the the setuid-root dtprintinfo binary from the Common Desktop Environment (CDE) distributed with Oracle Solaris 10. I demonstrated the possibility to chain together a printer name injection bug in dtprintinfo and a stack-based buffer overflow in libXm to achieve local privilege escalation to root on a fully-patched Solaris 10 system. The exploit is available at https://github.com/0xdea/exploits/blob/master/solaris/raptor_dtprintlibXmas.c.
- [ITA] - Marco Ivaldi aka raptor
-
Multiple vulnerabilities in Zyxel zysh
The format string exploit written in Tcl/Expect (!) is here: https://github.com/0xdea/exploits/blob/master/zyxel/raptor_zysh_fhtagn.exp
What are some alternatives?
fswatch - A cross-platform file change monitor with multiple backends: Apple OS X File System Events, *BSD kqueue, Solaris/Illumos File Events Notification, Linux inotify, Microsoft Windows and a stat()-based backend.
vulns - HN Security's advisories.
OSCP-BoF - This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.
WendzelNNTPd - A usable and IPv6-ready Usenet-server (NNTP daemon). It is portable (Linux/*BSD/*nix), supports AUTHINFO authentication, contains ACL as well as role based ACL and provides "invisible" newsgroups. It can run on MySQL and SQLite backends.
rar2fs - FUSE file system for reading RAR archives
arp-scan - The ARP Scanner
openvas-scanner - This repository contains the scanner component for Greenbone Community Edition.
vulns - Named vulnerabilities and their practical impact
mg - Micro (GNU) Emacs-like text editor ❤️ public-domain