Ok, so with all the hype surrounding this vulnerability, I figured that I would do a write up and give an example of how it works. Metasploit, as usual, makes it really simple. I really consider this to be a social engineering attack, because you need the victim to access a share. Yes, in the [...]
Posts Tagged ‘shell’
Windows ‘LNK’ Exploit Demonstration
Posted: 20th July 2010 by Matt in hacks, news, security, social engineeringTags: automated, browser, Command, exploit, LNK, metasploit, Microsoft, msf, msfconsole, network security audit, payload, remote, shell, Stuxnet, Temphid, URIPATH, victim, VirusBlokAda, vulnerable, W32.Stuxnet, W32.Temphid, Windows, wireless
26
Convincing End Users That Black is White
Posted: 23rd June 2010 by Matt in hacks, security, social engineeringTags: 0day, Changer, computer code, convincing, example, exe, file, icon, malicious computer, malware, mp3, packer, sexual exploitation, shell, software, song, spyware, stubs, trojan
If you read my post “Spyware, Hacking, & Sexual Exploitation and read the story about Luis Mijangos, you probably read over the part in the article at the OC Register where it says: …where Mijangos used peer-to-peer networks to infect computers around the world with malicious computer code. Mijangos induced victims to download the malware [...]
Fun with printers. [part 3]
Posted: 17th May 2010 by Matt in code, hacksTags: direct, download, files, ftp, hack, jet, message, modify, options, pjl, ready, readymsg, shell, upload
This will probably be the last post regarding printers, unless I come across something completely new and interesting. In the previous two posts, I showed how to use a printer as a zombie for network scanning. In the next one I talked about enabling job holding and a piece of software called ‘hijetter’. Well, hijetter [...]