| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAFB=mGDMRpxD22x+JdR7HAd6ZZCy1WGJfDi1f3xGY_M_2NnHLA@mail.gmail.com>
Date: Mon, 10 Oct 2011 00:54:57 +0700
From: "HI-TECH ." <isowarez.isowarez.isowarez@...glemail.com>
To: full-disclosure@...ts.grok.org.uk, submit@...sec.com,
bugtraq@...urityfocus.com
Subject: THE FULL DAYTONA PACKAGE
THE FULL DAYTONA PACKAGE -- BY KINGCOPE, YEAR 2011
THREE JBOSS APPLICATION SERVER REMOTE EXPLOITS WITH AUTHEN BYPASS
PORTED FROM METASPLOIT AND BEEFED UP WITH TWO SCANNERS:
*PNSCAN W/ SSL SUPPORT
*SYNSCAN MODDED
FILES:
* daytona_bsh.pl, daytona_deployfile.pl, daytona_maindeploy.pl
THE REMOTE EXPLOITS, BEST OF USE IS daytona_bsh.pl
* daytona_bsh_ssl.pl, daytona_deployfile_ssl.pl, daytona_maindeploy_ssl.pl
SSL SUPPORT FOR THE REMOTE EXPLOITS
* synscan-modded.tar
THE SYNSCAN IS MODDED FOR SCANNING JBOSS (X-Powered-By TAG) ON
PORT 8080 ONLY.
* pnscan-1.11.tar.gz
ORIGINAL PARALLEL NETWORK SCANNER (NO CREDITS HERE)
* pnscan-1.11-ssl.tar
PARALLEL NETWORK SCANNER MODDED TO SUPPORT SSL
USAGE: ./pnscan -r JBoss -w "HEAD / HTTP/1.0" 10.10.0.0/16 443
CHEERS,
KINGCOPE
Download attachment "DAYTONA_FULL.tar.bz2" of type "application/x-bzip2" (75479 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists