Collaborate Disseminate
On this April 2022 Patch Tuesday, Microsoft has released patches for 128 CVE-numbered vulnerabilities, including one zero-day exploited in the wild (CVE-2022-24521) and another (CVE-2022-26904) for which there’s already a PoC and a Metasploit mod… Continue reading Microsoft fixes actively exploited zero-day reported by the NSA (CVE-2022-24521)
Why is my VM not vulnerable to MS08-067?
There are similar question on stack exchange, yes, but they fail to specify all relevant information and so non receive a meaningful, thoughtful nor thorough answer. And I am in need of one.
Problem… Continue reading Windows XP SP3 2002 is not vulnerable to MS08-067
Is there a service or independent work (github) where I can learn about that service? Metasploit for each module/payload wants an lhost, is it possible set lhost in Metasploit to receive requests from any IP?
This article covers the solution for the LDAP challenges on a capture the flag.
I understand how the first example works, using the NULL value for the username and password to authenticate to the LDAP exploiting NULL Bind. I understood the… Continue reading Metasploit module for NULL LDAP credentials
I have tried to import this exploit:
https://www.exploit-db.com/exploits/50539
and then use it in Metasploit (I’m following a walkthrough), but Metasploit cannot load it.
Also I tried to use Python and follow the steps of the script but my… Continue reading Can I import this exploit on metasploit or is better to use it in python? [duplicate]
I was able to start a session using metasploit framework (msf6) with an android but after a while being in the session, the meterpreter session closes. Luckily however after a few seconds, another stage payload gets sent out, giving me acc… Continue reading How do I catch metasploit session scripts error code in ruby?
I’m sorry if this is not the best place to place to this question but after a lot of searches I haven’t found any solution
I’m running deathstar and I’m getting the following error
File "/root/.local/pipx/venvs/deathstar-empire/lib/py… Continue reading deathstar python error [closed]
I am trying to select an exploit that I was able to find using searchsploit. How do I download a ruby script exploit using metasploit command line?
I have a lab I am dealing with and need help to get a meterpreter session on this win 7 system.
My buffer overflow works great back to the pivot box. However since my attack box is not reachable from the subnet I cant find a way to get the… Continue reading How can I get a meterpreter session back to my attack box from subnet via pivot?
I have exploit on WinRM module.I success on run "auxiliary/scanner/winrm/winrm_cmd" and "auxiliary/scanner/winrm/winrm_login" module.
But on "auxiliary/scanner/winrm/winrm_wql" it fail
And when i run " e… Continue reading Can’t run "exploit/windows/winrm/winrm_script_exec" and "auxiliary/scanner/winrm/winrm_wql"