Section: .. / groups / hhp /
| /// File Name: |
cso.c |
Description:
|
Cso.c is a remote exploit for cgicso included with cgiemail 1.6. Tested on Slackware Linux 7.1 running Apache 1.3.20.
| | Author: | Ben Schultz | | Homepage: | http://www.hhp-programming.net | | File Size: | 4602 | | Last Modified: | Sep 11 00:14:51 2001 |
| MD5 Checksum: | bca688c3d593da49eb33f09d20d27877 |
|
| /// File Name: |
docanal.c |
Description:
|
A document Analysis tool which is useful for cryptanalysis. From May '98.
| | Author: | Tarsin | | Homepage: | http://hhp-programming.net | | File Size: | 8756 | | Last Modified: | Sep 10 23:51:40 2001 |
| MD5 Checksum: | 0a8358f22eec80a8cb66434421526159 |
|
| /// File Name: |
haxssl.tgz |
Description:
|
This Ruby code will test a specified Host's SSL certificate against the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated during the period where openssl on Debian-based installs suffered from a weakness in random number generation. Note that the blacklist is embedded in the code so the file is about 23 MB.
| | Author: | Cody Tubbs | | Related File: | dsa-1571-1.txt | | File Size: | 13052186 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 29 14:12:08 2008 |
| MD5 Checksum: | 96666f341f89b312294862723156679c |
|
| /// File Name: |
hhp-dump.pl |
Description:
|
A local root exploit for /sbin/dump. Tested on RH6.2.
| | Author: | Icesk | | Homepage: | http://www.hhp-programming.net | | File Size: | 328 | | Last Modified: | Dec 2 19:32:14 2000 |
| MD5 Checksum: | 640c4c9d6dd532b650af007a33db3083 |
|
| /// File Name: |
hhp-expect_adv0017.txt |
Description:
|
Expect v5.31.8 and v5.28.1 contains local buffer overflows. It is possible to exploit any suid/sgid expect application.
| | Author: | Isox and Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 6236 | | Last Modified: | Dec 30 22:18:48 2000 |
| MD5 Checksum: | d4683a31e003e1d110fcc9fde5e5c203 |
|
| /// File Name: |
hhp-expect_smash.c |
Description:
|
Expect (/usr/bin/expect) v5.31.8 and v5.28.1 local buffer overflow exploit. Tested on Slackware 7.x. Advisory available here.
| | Author: | Isox | | Homepage: | http://www.hhp-programming.net | | File Size: | 3079 | | Last Modified: | Dec 30 22:10:52 2000 |
| MD5 Checksum: | da8604330b6cf684127712d3e2938053 |
|
| /// File Name: |
hhp-gdc_smash.c |
Description:
|
Hhp-gdc_smash.c is a local root exploit for gdc. Requires group wheel access. Tested on BSDI 4.1 x86 default install.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2822 | | Last Modified: | Mar 5 19:28:05 2001 |
| MD5 Checksum: | efae2c2cea50f03e11330ec67729ea53 |
|
| /// File Name: |
hhp-kermit_smash.c |
Description:
|
C-Kermit local exploit. Versions 7.0.197 and below are vulnerable. Tested on Slackware 7, where it is not suid. It is suid on Olivetti X/OS R2.3, 3.x.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 1786 | | Last Modified: | Sep 19 18:13:47 2000 |
| MD5 Checksum: | 4b6df3550fdc666206cb8d016fc78f79 |
|
| /// File Name: |
hhp-knock_shellcode.c |
Description:
|
Shellcode which plays audio (knock knock) vi /dev/dsp and setreuid(0,0) + execve shellcode for Linux/x86.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2830 | | Last Modified: | Dec 30 22:21:15 2000 |
| MD5 Checksum: | 09ea4fb300968292550704403c558be9 |
|
| /// File Name: |
hhp-kwintv_smash.c |
Description:
|
Kwintv local buffer overflow exploit which provides a gid=33 (video) shell on SuSE 7.0.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2169 | | Last Modified: | Dec 30 22:05:35 2000 |
| MD5 Checksum: | dd5032ac157db74a06d24a992baca46c |
|
| /// File Name: |
hhp-ospf_smash.c |
Description:
|
Hhp-ospf_smash.c is a local root exploit for ospf_monitor. Tested on BSDI 4.1 x86 default install.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 3197 | | Last Modified: | Mar 5 19:22:58 2001 |
| MD5 Checksum: | b41b1c1bc193511d950a1c291c22c23f |
|
| /// File Name: |
hhp-pine_adv0004.txt |
Description:
|
The Pine MUA up to and including v4.10 contains a security hole that allows a malicious remote attacker to potentially execute arbitrary code, resulting in possibility of root compromise. Exploit code included. Discovered by elaich aka LoopHole of the hhp.
| | File Size: | 5540 | | Last Modified: | Aug 16 20:00:40 1999 |
| MD5 Checksum: | 20d8a6a76d5c7a998cafaebcd11b4ec0 |
|
| /// File Name: |
hhp-PMS.tar.gz |
Description:
|
pms.pl is watches for certain running processes and alerts you via /dev/speech when they start.
| | Author: | Loophole | | File Size: | 4583 | | Last Modified: | Jun 26 02:59:03 2000 |
| MD5 Checksum: | 40b4b8bc523bcebaa66711f7ff038a38 |
|
| /// File Name: |
hhp-qtip.c |
Description:
|
Hhp-qtip.c is a local root exploit for /usr/bin/tip on BSDI 4.2. Requires access to tip, usually gid(dialer).
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 1350 | | Last Modified: | Mar 12 22:44:26 2002 |
| MD5 Checksum: | b1f1e53e81b7b495f4faeb362d585475 |
|
| /// File Name: |
hhp-sccw_smash.c |
Description:
|
A local buffer overflow exploit for sccw v1.1 and maybe others. Will gain root[uid=0].
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 2378 | | Last Modified: | Sep 11 00:18:49 2001 |
| MD5 Checksum: | 9f4fd01a61fe22039bc91d8ef6d301d6 |
|
| /// File Name: |
hhp-SSH_TROSNIFF.tgz |
Description:
|
hhp-trosniff is a complete package of patches to modify ssh, ssh2, sshd, ssh2d, and opensshd to extract and log the Incoming/Target HostName/UserName/Password. Intended to log brute force attacks and deleted users who try to gain access.
| | Author: | Loophole | | File Size: | 4064 | | Last Modified: | Jun 21 19:31:24 2000 |
| MD5 Checksum: | 8bc929c223f30bbea750ab01ca5fdd70 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
