Jul
22

Pass The Hash

One of my most used and favourite tools on any infrastructure test. Keimpx is a fantastic little tool which allows the spraying of Windows password hashes to a host or a list of multiple hosts to test for valid credentials. Once it finds a valid match it offers the ability to gain a reverse shell to the remote host. […]

Jul
22

VNC Authentication Bypass

Tool by BL4CK to bypass VNC authentication. This is now patched in the latest VNC version, but I do come across quite a few tests running vulnerable versions such as 4.1.1. You can download the VNC bypass tool by BL4CK below. http://www.commonexploits.com/downloads/BL4CK-vncviewer-authbypass.zip MD5: 130702b01ae05baa2741d52aef630ba9 Tweet

Jul
19

Tomcat Server Shells

A couple of methods you can use to gain a shell through a Tomcat server when you find weak credentials. Method 1). Uploading a .war (jsp) command shell direct in the web manager. Method 2). using Metasploit to gain a reverse shell. Tweet

Jul
19

Client Side Aurora I.E Exploit

Client side exploit Internet Explorer 6 on Windows XP using Metasploit. MS10-002. Tweet

Jul
19

Client Side PDF Exploit

Target system Windows XP SP3 running Adobe Acrobat PDF Reader V9. Metasploit is packed with great PDF exploits. Most A.V pick this up (but not all). Also try the web URL PDF exploits that work by just browsing to a URL. Just shows how important it is to update things like PDF, Java etc into […]

Jul
17

Welcome

Welcome to the new website….. Information will be populated here for professional penetration testers to share knowledge and tools used in the industry. Much more content to come..this idea from scratch to this stage has only been a matter of hours.. Tweet