| Email address | berendjanwever at gmail.com |
|---|---|
| Website | skypher.com |
| First Active | 2003-04-10 |
| Last Active | 2010-12-31 |
A null-free shellcode for 32-bit versions of Windows 5.0 - 7.0 all service packs that uses the Microsoft Speech API to say "You got pwned!" over the speakers. Includes optional code that fixes stack alignment (adds 5 bytes) and bypasses EAF (adds 29 bytes).
44d15b1c3725d9072485e32e585a0cccOracle Java APPLET tag children property memory corruption exploit.
6590f35f3cdbe9a76740ff0b0d42ae42Firefox versions 3.5.10 and 3.6.6 suffers from a WMP memory corruption vulnerability via pop-ups.
ce91aade619b0973ca465dfe97f12d57Internet Exploiter 12+DEP: Oracle Java 6 OBJECT tag "launchjnlp"/"docbase" parameter buffer overflow exploit.
600951924cdb58ff12c600fd138b20f5Msxml2.XMLHTTP.3.0 response handling memory corruption exploit that takes advantage of the vulnerability listed in MS10-051.
56a3606bdb6495ff1afe69b1c6e2e0bdInternet Exploiter II version 3.0 DHTML memory corruption proof of concept exploit that bypasses DEP.
58372761a020366efaad41e73953345eALPHA3 is an alphanumeric shellcode encoder.
403031de84c35d6a3ef104a5f496aa4fBETA can convert raw binary shellcode into text that can be used in exploit source-code. It can convert raw binary data to a large number of encodings. It can also do the reverse: decode encoded data into binary from the same types of encodings.
eb0a52ec5f9e008f9e706509b08f1742Microsoft Internet Explorer suffers from a Content-Encoding: deflate memory corruption vulnerability.
e2a3f882080bbfa378aec3962dbf2701Various reproduction code that demonstrates memory corruption when loading/unloading Adobe objects through an EMBED tag in Firefox.
e46dbb863f26ab68d37f398a2bc2de61Windows x86 null-free bindshell for Windows 5.0 through 7.0 all service packs.
ada009606ae19da9bdcf33824522f079Microsoft Windows x86 null-free bindshell shellcode for Windows 5.0 through 6.0 all service packs.
2568e032ccff39d08cb7a6c80b8e8e50Microsoft Internet Explorer EMBED memory corruption proof of concept exploit that leverages the vulnerability discussed in MS09-014.
391d92a335a4f4a3cb4864d4d763c9cbThis is a small piece of shellcode written in assembler that can scan the user-land address space for small blocks of memory ("eggs") and recombine the eggs into one large block.
a5e21a351710cb56abc553dbb789c14eMozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode reference crash exploit.
f12ff389aa578484490526c79acc2586A NULL pointer read vulnerability exists in Microsoft Internet Explorer versions 6.0, 7.0, and 8.0 Beta.
f739f49d13fa6d3d74c4fc6650a3ff73Safari array integer overflow proof of concept exploit.
dd9f8f395b56e7be0ccfd2abb77be20dASCII Art / shellcode hybrid called "Julia". This shellcode was created using Ars Ex Machina Coda. The shellcode will only work when it is run in writable and executable memory and if ECX points to the base address of the shellcode.
fff6a982f7a170694d94be43ed1d897bThis is a very cool ASCII Art / shellcode hybrid of "SkyLined".
5376dccf4f333f4f5ec7f7574b059ccfThis is a very cool ASCII Art / shellcode hybrid of "SkyLined".
891def1be23b2a1c2b4ac6c496deb605PwnZilla 5 - Exploit for the IDN host name heap buffer overrun in Mozilla browsers such as Firefox, Mozilla, and Netscape.
eef9337ee7cdaceb446572f6a20a0ea6Research and development has led to a 90% reliable working exploit for the IDN Heap Buffer overrun in FireFox on WinXP and Win2k3 as long as DEP is turned off and JavaScript is enabled.
1f4208462036e88fcfcc23b8955f8259A number of issues have been reported lately by various sources about Internet Explorer vulnerabilities in relation to specific COM objects. Research has shown that the root cause is the fact that these COM objects are not designed to be loaded in IE at all. These objects therefore make wrongful assumptions about the state of the process they are loaded into, specifically about the contents of heap memory. This can be abused to uncover unwanted features, like the ability to run arbitrary code on a victims machine.
4eec51dc4a217d5ba6a9784b4cc52f6fProof-of-Concept exploit code for the MSIE DHTML object handling vulnerabilities (described in MS05-20).
4682b826fd776764dcb3dbc6ee5c81c8InternetExploiter 3, .ANI-file Animation header length stack based buffer overflow exploit for Internet Explorer. Uses Cascading Style Sheets to load a malicious animated cursor. Runs a bindshell on port 28876.
466f587227c9ddbf8f3e34710b089c84
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed