Welcome to The Forum

Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to

existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile

and so much more. This message will be removed once you have signed in.

Active Hackers

The best community of active hackers. This community has been working in hacking for more than 10 years.

 

Hacker Forum

Hacker from all countries join this community to share their knowledge and their hacking tools

    Hacking Tools

    You can find thousands of tools shared by hackers. RAT's, Bot's, Crypters FUD, Stealers, Binders, Ransomware, Mallware, Virus, Cracked Accounts, Configs, Guides, Videos and many other things.

      PRIV8

      Become a Priv8 user and access all parts of the forum without restrictions and without limit of download. It only costs 100 dollars, and it will last you for a lifetime.

      Read Rules

      In this community we follow and respect rules, and they are the same for everyone, regardless of the user's rank. Read the rules well not to be prohibited.

      Sign in to follow this  
      1337day-Exploits

      LW-N605R Remote Code Execution

      Recommended Posts

      LW-N605R devices allow remote code execution via shell metacharacters in the HOST field of the ping feature at adm/systools.asp. Authentication is needed but the default password of admin for the admin account may be used in some cases.

      Hidden Content

        Give reaction to this post to see the hidden content.

      Share this post


      Link to post
      Share on other sites
      Guest
      This topic is now closed to further replies.
      Sign in to follow this  

      • Similar Content

        • By itsMe

          Hidden Content
          Give reaction to this post to see the hidden content. Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution)
          Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file)
          You need to install lcab first (sudo apt-get install lcab)
          Check REPRODUCE.md for manual reproduce steps
          If your generated cab is not working, try pointing out exploit.html URL to calc.cab
          Finally try the docx in a Windows Virtual Machine:

          Hidden Content
          Give reaction to this post to see the hidden content.
          Hidden Content
          Give reaction to this post to see the hidden content.
        • By itsMe

          Hidden Content
          Give reaction to this post to see the hidden content. SpoolSploit
          A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.
          Summary
          SpoolSploit is a collection of Windows print spooler exploits containerized with other utilities for practical exploitation. A couple of highly effective methods would be relaying machine accoun

          Hidden Content
          Give reaction to this post to see the hidden content.
        • By itsMe

          Hidden Content
          Give reaction to this post to see the hidden content. Karta - source code assisted fast binary matching plugin for IDA.

          Hidden Content
          Give reaction to this post to see the hidden content.
        • By itsMe

          Hidden Content
          Give reaction to this post to see the hidden content. Evil-WinRM
          This shell is the ultimate WinRM shell for hacking/pentesting.
          WinRM (Windows Remote Management) is the Microsoft implementation of the WS-Management Protocol. A standard SOAP-based protocol that allows hardware and operating systems from different vendors to interoperate. Microsoft included it in their Operating Systems in order to make life easier to system administrators.
          This program can be used on any Microsoft Windows Servers with this feature enabled (usually at port 5985), of course only if you have credentials and permissions to use it. So we can say that it could be used in a post-exploitation hacking/pentesting phase. The purpose of this program is to provide nice and easy-to-use features for hacking. It can be used with legitimate purposes by system administrators as well but most of its features are focused on hacking/pentesting stuff.
          Features
              Command History
              WinRM command completion
              Local files completion
              Upload and download files
              List remote machine services
              FullLanguage Powershell language mode
              Load Powershell scripts
              Load in memory dll files bypassing some AVs
              Load in memory C# (C Sharp) compiled exe files bypassing some AVs
              Colorization on output messages (can be disabled optionally)
          Changelog v3.3
              Fixed missing output messages for Invoke-Binary
              Extracted AMSI bypass from the menu to avoid menu problems due to M$ AV signatures
              Dynamic AMSI bypass implemented to avoid AV signatures

          Hidden Content
          Give reaction to this post to see the hidden content.