Tools

28 Jun 2017

[ICS] Satel Iberia SenNet Data Logger and Electricity Meters Command Injection – Metasploit Exploit Module

Metasploit Exploit Module published - Satel Iberia SenNet Data Logger and Electricity Meters Command Injection This module exploits an OS Command Injection vulnerability in Satel Iberia SenNet Data Loggers & Electricity Meters to perform arbitrary command execution as 'root'. Exploit URL:
https://www.rapid7.com/db/modules/auxiliary/scanner/telnet/satel_cmd_exec Read on for demo.

Read more

29 Mar 2017

3 New Metasploit Modules for Cambium ePMP Landed

Back in 2015, I had reported multiple vulnerabilities in Cambium ePMP 1000 appliances. I finally submitted Metasploit modules for testing ePMP devices and three (3) new Metasploit modules for Cambium ePMP devices have now landed:

  1. Cambium ePMP 1000 Login Scanner
  2. Cambium ePMP 1000 Password Hash Extractor
  3. Cambium ePMP 1000 Dump Device Config


Read on for details.

Read more

19 Oct 2016

New Powershell Mass Encrypt and Decrypt modules

PowerSploit's Out-Encrypted.ps1 handles / encrypts one script at a time; encrypted file needs to be decrypted manually and then executed. Wrote up new Powershell Mass Encrypt and Decrypt modules to handle your favorite set of powershell scripts easily. Using PS-MassEncScript.ps1, encrypt multiple scripts with a password and a salt value, in one go. Use PS-DecScript.ps1 to decrypt & execute any of these encrypted files.

Read more

10 Sep 2016

Powersploit – AV Evasion

[Quick Notes] Powersploit - AV Evasion On my pentest engagements, I primarily use Powershell (PS) & PS based exploitation tools & frameworks like CME, Empire, Powersploit, Nishang, Veil, etc, along with Metasploit & other tools. This short writeup is one of the AV evasion scenarios. Posting here for reference.

Read more

30 Jun 2013

New Metasploit Modules

I wrote new Metasploit auxiliary modules & they landed at master branch recently. http://www.metasploit.com/modules/auxiliary/scanner/http/sevone_enum http://www.metasploit.com/modules/auxiliary/scanner/http/rfcode_reader_enum http://www.metasploit.com/modules/auxiliary/scanner/http/infovista_enum This next module for…

Read more