Chris Gates carnal0wnage
carnal0wnage
/ xbmc_remote_exec.rb
Last active
August 29, 2015 14:06
— forked from phikshun/xbmc_remote_exec.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = AverageRanking | |
| include Msf::Exploit::Remote::Udp | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'XBMC Remote UDP Code Exec', |
carnal0wnage
/ wemo_upnp_exec.rb
Last active
August 29, 2015 14:06
— forked from phikshun/wemo_upnp_exec.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## | |
| # This module requires Metasploit: http//metasploit.com/download | |
| # Current source: https://github.com/rapid7/metasploit-framework | |
| ## | |
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = ExcellentRanking |
carnal0wnage
/ belkin_netcamhd_cmd_injection.rb
Last active
August 29, 2015 14:06
— forked from phikshun/belkin_netcamhd_cmd_injection.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = ExcellentRanking | |
| include Msf::Exploit::Remote::HttpClient | |
| def initialize(info={}) | |
| super(update_info(info, | |
| 'Name' => "Belkin Netcam HD UPnP Command Injection", |
carnal0wnage
/ wdmycloud_cmd_injection_csrf.rb
Last active
August 29, 2015 14:06
— forked from phikshun/wdmycloud_cmd_injection_csrf.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = AverageRanking | |
| include Msf::Exploit::Remote::HttpServer::HTML | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'WDMyCloud NAS Command Injection CSRF', |
carnal0wnage
/ netgear_telnet_enabler.rb
Last active
August 29, 2015 14:06
— forked from phikshun/netgear_telnet_enabler.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| require 'crypt/blowfish' # sorry, openssl is limited to 16-byte key size :( | |
| # add gem 'crypt', '1.1.4' to Gemfile | |
| module ::Crypt | |
| class Blowfish | |
| def setup_blowfish() | |
| @sBoxes = Array.new(4) { |i| INITIALSBOXES[i].clone } | |
| @pArray = INITIALPARRAY.clone | |
| keypos = 0 |
carnal0wnage
/ netgear_upnp_csrf.rb
Last active
August 29, 2015 14:06
— forked from phikshun/netgear_upnp_csrf.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = ExcellentRanking | |
| include Msf::Exploit::Remote::HttpServer::HTML | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'NetGear UPnP CSRF', |
carnal0wnage
/ wdmycloud_cmd_injection_csrf.rb
Last active
August 29, 2015 14:06
— forked from phikshun/wdmycloud_cmd_injection_csrf.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = AverageRanking | |
| include Msf::Exploit::Remote::HttpServer::HTML | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'WDMyCloud NAS Command Injection CSRF', |
carnal0wnage
/ netgear_telnet_enabler.rb
Last active
August 29, 2015 14:06
— forked from phikshun/netgear_telnet_enabler.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| require 'crypt/blowfish' # sorry, openssl is limited to 16-byte key size :( | |
| # add gem 'crypt', '1.1.4' to Gemfile | |
| module ::Crypt | |
| class Blowfish | |
| def setup_blowfish() | |
| @sBoxes = Array.new(4) { |i| INITIALSBOXES[i].clone } | |
| @pArray = INITIALPARRAY.clone | |
| keypos = 0 |
carnal0wnage
/ homeseer_code_execution.rb
Last active
August 29, 2015 14:06
— forked from phikshun/homeseer_code_execution.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = AverageRanking | |
| include Msf::Exploit::Remote::HttpClient | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'HomeSeer Code Execution Vulnerability', |
carnal0wnage
/ plex_windows_rce.rb
Last active
August 29, 2015 14:06
— forked from phikshun/plex_windows_rce.rb
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'msf/core' | |
| class Metasploit3 < Msf::Exploit::Remote | |
| Rank = AverageRanking | |
| include Msf::Exploit::Remote::HttpServer::HTML | |
| def initialize(info = {}) | |
| super(update_info(info, | |
| 'Name' => 'Plex Code Execution Vulnerability', |
OlderNewer