Section: .. / groups / hhp /
| /// File Name: |
haxssl.tgz |
Description:
|
This Ruby code will test a specified Host's SSL certificate against the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated during the period where openssl on Debian-based installs suffered from a weakness in random number generation. Note that the blacklist is embedded in the code so the file is about 23 MB.
| | Author: | Cody Tubbs | | Related File: | dsa-1571-1.txt | | File Size: | 13052186 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 29 14:12:08 2008 |
| MD5 Checksum: | 96666f341f89b312294862723156679c |
|
| /// File Name: |
hhp-qtip.c |
Description:
|
Hhp-qtip.c is a local root exploit for /usr/bin/tip on BSDI 4.2. Requires access to tip, usually gid(dialer).
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 1350 | | Last Modified: | Mar 12 22:44:26 2002 |
| MD5 Checksum: | b1f1e53e81b7b495f4faeb362d585475 |
|
| /// File Name: |
TEA-ICommandLine.tar.gz |
Description:
|
The TEA (Tiny Encryption Algorithm) is a Feistel type cipher; The block is split into two parts, each being 32 bits, 128 bit key, and by default uses 32 rounds.
| | Author: | Tarsin | | Homepage: | http://hhp-programming.net | | File Size: | 5358 | | Last Modified: | Sep 11 00:28:23 2001 |
| MD5 Checksum: | f329eec0e937db186c88d61b40986914 |
|
| /// File Name: |
hhp-sccw_smash.c |
Description:
|
A local buffer overflow exploit for sccw v1.1 and maybe others. Will gain root[uid=0].
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 2378 | | Last Modified: | Sep 11 00:18:49 2001 |
| MD5 Checksum: | 9f4fd01a61fe22039bc91d8ef6d301d6 |
|
| /// File Name: |
cso.c |
Description:
|
Cso.c is a remote exploit for cgicso included with cgiemail 1.6. Tested on Slackware Linux 7.1 running Apache 1.3.20.
| | Author: | Ben Schultz | | Homepage: | http://www.hhp-programming.net | | File Size: | 4602 | | Last Modified: | Sep 11 00:14:51 2001 |
| MD5 Checksum: | bca688c3d593da49eb33f09d20d27877 |
|
| /// File Name: |
hhp-temprace6_0.pl |
Description:
|
Hhp-temprace6_0.pl is a quick and simple temp race checker for Linux, BSD, Sun/Solaris and IRIX. Put together to eliminate the hassle of manual checking.
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 5798 | | Last Modified: | Sep 11 00:12:01 2001 |
| MD5 Checksum: | 559f3a9f22658577b77a93c23f00ab8f |
|
| /// File Name: |
pro-sec.txt |
Description:
|
Programming and Programming Securely - How to do it. Includes information on argument checking, buffer checking, shell escapes, preventing races, logging, sly tricks, and more.
| | Author: | Cody Tubbs | | Homepage: | http://www.hhp-programming.net | | File Size: | 11489 | | Last Modified: | Sep 10 23:55:38 2001 |
| MD5 Checksum: | 20f8b0010458cbdee0ef507d641cac7d |
|
| /// File Name: |
docanal.c |
Description:
|
A document Analysis tool which is useful for cryptanalysis. From May '98.
| | Author: | Tarsin | | Homepage: | http://hhp-programming.net | | File Size: | 8756 | | Last Modified: | Sep 10 23:51:40 2001 |
| MD5 Checksum: | 0a8358f22eec80a8cb66434421526159 |
|
| /// File Name: |
hhp-gdc_smash.c |
Description:
|
Hhp-gdc_smash.c is a local root exploit for gdc. Requires group wheel access. Tested on BSDI 4.1 x86 default install.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2822 | | Last Modified: | Mar 5 19:28:05 2001 |
| MD5 Checksum: | efae2c2cea50f03e11330ec67729ea53 |
|
| /// File Name: |
hhp-ospf_smash.c |
Description:
|
Hhp-ospf_smash.c is a local root exploit for ospf_monitor. Tested on BSDI 4.1 x86 default install.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 3197 | | Last Modified: | Mar 5 19:22:58 2001 |
| MD5 Checksum: | b41b1c1bc193511d950a1c291c22c23f |
|
| /// File Name: |
hhp-webinfo.pl |
Description:
|
This little utility will use a public service (netcraft) to check the web server version and operating system of a remote host.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 1262 | | Last Modified: | Dec 30 22:22:56 2000 |
| MD5 Checksum: | a5cdbc365ef4c4de7316495a0af1d224 |
|
| /// File Name: |
hhp-knock_shellcode.c |
Description:
|
Shellcode which plays audio (knock knock) vi /dev/dsp and setreuid(0,0) + execve shellcode for Linux/x86.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2830 | | Last Modified: | Dec 30 22:21:15 2000 |
| MD5 Checksum: | 09ea4fb300968292550704403c558be9 |
|
| /// File Name: |
hhp-expect_adv0017.txt |
Description:
|
Expect v5.31.8 and v5.28.1 contains local buffer overflows. It is possible to exploit any suid/sgid expect application.
| | Author: | Isox and Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 6236 | | Last Modified: | Dec 30 22:18:48 2000 |
| MD5 Checksum: | d4683a31e003e1d110fcc9fde5e5c203 |
|
| /// File Name: |
hhp-expect_smash.c |
Description:
|
Expect (/usr/bin/expect) v5.31.8 and v5.28.1 local buffer overflow exploit. Tested on Slackware 7.x. Advisory available here.
| | Author: | Isox | | Homepage: | http://www.hhp-programming.net | | File Size: | 3079 | | Last Modified: | Dec 30 22:10:52 2000 |
| MD5 Checksum: | da8604330b6cf684127712d3e2938053 |
|
| /// File Name: |
hhp-kwintv_smash.c |
Description:
|
Kwintv local buffer overflow exploit which provides a gid=33 (video) shell on SuSE 7.0.
| | Author: | Loophole | | Homepage: | http://www.hhp-programming.net | | File Size: | 2169 | | Last Modified: | Dec 30 22:05:35 2000 |
| MD5 Checksum: | dd5032ac157db74a06d24a992baca46c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
