advisories / archive / code / exploits / files / papers

Yo fool!@# Check out the these three new dope angrypacket projects:
the unholy trinity!
mothra3 ipcrawl blindcrawl.pl

Remote Solaris KCMS exploit Nothing posetd in a while so here is an old ass exploit I've had sitting around for a long ass time. The exploit requires ttdb and kcms RPC services to be running on the remote host. More details can be found at CERT. If successfull it will grab the shadow file and leave no log on the remote system. RPC is so fresh. Get the exploit here posted by dmuz @ 4:48PM PST, 5.6.04

xfree86 font exploit Happy Valentines day. In honor of this day of love enz00 coded up an exploit for a bug in XFree86 so that you can get root on your GFs linux box and see if shes fucking around on you. Get the code here posted by dmuz @ 1:47PM PST, 2.14.04

blindcrawl.pl updated I've just posted an updated version of blindcrawl.pl in code section. blindcrawl.pl performs brute force lookups of cnames for a specified domain. New for this version are automatic appending of an incremented numeric to each cname and an expanded set of default cnames to test. Expect to see LOTS more work on this code. Grab blindcrawl.pl here posted by dmuz @ 3:09PM PST, 12.31.03

m3 alive and kicking!@# Development on mothra3, or m3 as we like to call it now, has begun again with a fervor. If for no other reason that because it needs to be done. For those that don't know m3 is a verstile and highly configurable banner grabber. Grab the latest release or browse the current source here. posted by dmuz @ 2:24PM PST, 12.29.03

ipcrawl released Happy Holidaze from AP! You know we love you, and to show it I coded up ipcrawl JUST FOR YOU the other night while i was bored. You can grab it here. ipcrawl sequentially traverses an IP address space, getting DNS entries for each address. Neat. posted by dmuz @ 10:32PM PST, 12.24.03 show all posts