code execution – Page 12 – WindowsTechs.com

Bufferoverflow attack shell code adress calculation

Posted on November 12, 2017 by Umer

I’ve completed a bufferoverflow attack by injecting shellcode into buffer, and executing exploit by:

./binary $(python -c ‘print overflow +shellcode + adressofshellcode’)

Above exploit is working and I’m able to exploit th… Continue reading Bufferoverflow attack shell code adress calculation→

Testing Encoded shellcode on windows

Posted on November 12, 2017 by HAlmusajjen

I’m working on an insertion encoder that is basically encoding the shellcode by the following python script:

#!/usr/bin/python

# Python Insertion Encoder
import random

shellcode = (“\xfc\xe8\x82\x00\x00\x00\x60\x89\xe5\x3… Continue reading Testing Encoded shellcode on windows→

Execute a PHP function that returns an array from an XSL file

Posted on October 5, 2017 by Sidahmed

There is a security challenge where you have to execute code on the server to retrieve a flag, and this code has to be executed using an XSL document.

So I found a way to make the server interpret my own XSL file, And I used… Continue reading Execute a PHP function that returns an array from an XSL file→

SERVER-IIS multiple extension code execution attempt

Posted on September 27, 2017 by Gabrielius

Sourcefire detected a SERVER-IIS multiple extension code execution attempt event and captured a packet. It originated from a Chinese IP, AbuseIPDB has several records about its malicious activity. Some of the logs included a … Continue reading SERVER-IIS multiple extension code execution attempt→

Where can I find SLmail 5.5 to download? [on hold]

Posted on September 19, 2017 by Akshansh Shrivastava

I am trying to do some buffer overflow attacks from kali to windows and there is one s/w “SLmail 5.5” which has buffer overflow vuln. But I cannot find it in torrent or google search to download slmail. everywhere I can only … Continue reading Where can I find SLmail 5.5 to download? [on hold]→

Is it safe to open virus infected EXE with Telerik JustDecompile?

Posted on September 10, 2017 by CleanBold

My antivirus software has detected an EXE downloaded from Internet as infected with virus Malwr.Heur.MSILPerseus. It has quarantined it. However, I wanted to decompile & study it’s code. Will it be safe to decompile the E… Continue reading Is it safe to open virus infected EXE with Telerik JustDecompile?→

Is it safe to open virus infected EXE with Telerik JustDecompile?

Posted on September 10, 2017 by CleanBold

Foxit to Fix PDF Reader Zero Days by Friday

Posted on August 22, 2017 by Chris Brook

Foxit Software says it will fix two vulnerabilities in its PDF reader products that could be triggered through its JavaScript API to execute code. Continue reading Foxit to Fix PDF Reader Zero Days by Friday→

Mozilla Fixes 29 Vulnerabilities in Firefox, Makes Flash Click-To-Activate

Posted on August 9, 2017 by Chris Brook

Mozilla fixed three critical vulnerabilities and made Flash click-to-activate by default when it released Firefox 55 on Tuesday Continue reading Mozilla Fixes 29 Vulnerabilities in Firefox, Makes Flash Click-To-Activate→

Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability

Posted on July 24, 2017 by Michael Mimoso

Researcher Paulos Yibelo said that Dashlane elected not to patch a vulnerability he disclosed more than a year ago in all versions of the password manager application. Continue reading Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability→