execve("/bin/sh",{"/bin/sh",NULL},NULL) shellcode for Mac OSX on both the PPC and x86 platforms.
72e47e8ad4ab92ef14a550392be4c21cA sign extending bug in AppleFileServer exists while parsing a FPLoginExt packet. Exploit included.
334fc84dc92a81fe0bbc6c684905a040Small application written to make life easier. It dumps C style opcodes between two provided offsets.
584510f1d459b53ee3499e97718aa6eaLocal root exploit for mRouter installed by iSync on Mac OS X 10.3.
9dd5712dae885584c97c7a9575e3d4f6Mac OSX versions 10.3.x with a Darwin Kernel equal to or below 7.7.0 are susceptible to a denial of service flaw that may allow for possible privilege escalation.
c75586bd9e285adb8bba510e652200acProof of concept exploit for iTunes 4.3.7 on OS X 10.3.7. Shellcode binds a shell to port 4444.
2ec510bd1e7504720e2969ebeccde787WeaponX is a kernel based rootkit for Mac OSX which is roughly based on adore. It runs as a kernel extension, similar to a LKM. Requires Xcode. Readme available here.
12fa6fb5faf460fce717f8d298625bd0New Macintosh OS-X rootkit that is roughly based off of adore. It hides itself from kextstat, netstat, utmp and wtmp. Further revisions to include a reverse shell triggered by ARP and DNS packets.
57d1312f1e101f52b9b08e4d557a2f99Statistics Server 5.02x for Windows contains a buffer overflow caused by a long GET request. Includes perl exploit which spawns a winshell with system privileges on port 8008 on Statistics Server 5.02x/Win2k.
3bc933197771d5315f27ec9a7b873af5
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed