[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] THE FULL DAYTONA PACKAGE

To: full-disclosure@xxxxxxxxxxxxxxxxx, submit@xxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] THE FULL DAYTONA PACKAGE
From: "HI-TECH ." <isowarez.isowarez.isowarez@xxxxxxxxxxxxxx>
Date: Mon, 10 Oct 2011 00:54:57 +0700

THE FULL DAYTONA PACKAGE -- BY KINGCOPE, YEAR 2011
THREE JBOSS APPLICATION SERVER REMOTE EXPLOITS WITH AUTHEN BYPASS
PORTED FROM METASPLOIT AND BEEFED UP WITH TWO SCANNERS:
*PNSCAN W/ SSL SUPPORT
*SYNSCAN MODDED

FILES:
      * daytona_bsh.pl, daytona_deployfile.pl, daytona_maindeploy.pl
        THE REMOTE EXPLOITS, BEST OF USE IS daytona_bsh.pl

      * daytona_bsh_ssl.pl, daytona_deployfile_ssl.pl, daytona_maindeploy_ssl.pl
        SSL SUPPORT FOR THE REMOTE EXPLOITS

      * synscan-modded.tar
        THE SYNSCAN IS MODDED FOR SCANNING JBOSS (X-Powered-By TAG) ON
PORT 8080 ONLY.

      * pnscan-1.11.tar.gz
        ORIGINAL PARALLEL NETWORK SCANNER (NO CREDITS HERE)

      * pnscan-1.11-ssl.tar
        PARALLEL NETWORK SCANNER MODDED TO SUPPORT SSL
        USAGE: ./pnscan -r JBoss -w "HEAD / HTTP/1.0" 10.10.0.0/16 443

CHEERS,
KINGCOPE

Attachment: DAYTONA_FULL.tar.bz2
Description: BZip2 compressed data

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] LinkedIn_User Account Delete using Click jacking
Next by Date: Re: [Full-disclosure] Facebook/google+ Cross-Site Content Forgery exploit
Previous by thread: [Full-disclosure] [ MDVSA-2011:131-1 ] libxml
Next by thread: [Full-disclosure] Possible German Governmental Backdoor found ("R2D2")
Index(es):
- Date
- Thread