Search | Research | Contact Us Tuesday October 10, 2021
Languages
Most Viewed Items
  1 PHPXMLRPC Library Remote Code Execution
  2 XOOPS 2.0.11 && Earlier Multiple Vulnerabilities
  3 Multiple Invision Power Board Vulnerabilities
  4 Mambo Multiple Vulnerabilities
  5 eBay And Amazon Still Vulnerable
  6 PEAR XML_RPC Library Remote Code Execution
  7 When Small Mistakes Can Cause Big Problems
  8 Woltlab Burning Board SQL Injection Vulnerability
  9 WordPress 1.5.1.2 And Earlier Multiple Vulnerabilities
10 MySQL Eventum Multiple Vulnerabilities
Need Secure Code?
Quick Search
You can use the form below to search our site. Just enter the keywords to search.
Home Services Archives Research Downloads Contact
SubScan 1.3 DNS Enumeration Utility Released August 18, 2021
After a way too long awaited release SubScan 1.3 is here. It is a beta copy, but works. I call it a beta because right now it is only for the Windows OS. I plan changing this in the very near future, but until then the source is available if you want to make it better. Some of the new features in SubScan 1.3 are netblock scans, deep scan, and a wildcard DNS option that helps ignore duplicate records. The deep scan is my favorite feature of the new release, and allows for the enumaration of up to one hundred times more DNS records than in SubScan 1.2. If you have any questions about this release you can get them answered on our forums. Please read the README file before asking any questions though
Read This Article Article Read 999 Times
SubScan 1.2 DNS Discovery Utility Released May 25, 2022
SubScan is a DNS utility that i built for myself and decided to share it with the public. Any of you who have used the earlier versions should know that this version is COMPLETELY different. It's almost a completely different program, but accomplishes the same thing really. Here are some things that are new and improved in SubScan 1.2 If you have any comments, questions, or need help or anything else feel free to ask on the forums. Be sure to check out the readme file first though, as it might just have the answer you are looking for. Anyone using the contact forms for tech questions will be ignored.
Read This Article Article Read 143 Times
IISamDiscover And IISamCrack Now Available May 02, 2022
Recently I noticed that the Microsoft IIS Accounts Manager could be used to verify accounts much like the VRFY and EXPN commands with sendmail. Turns out that David Lichtfield discovered this vuln years earlier, but I don't think it was ever an official BID until I posted the issue to BugTraq. Anyway, below is a link to the example code that I wrote. The versions posted at BugTraq are the same, but the formatting got completely trashed. IISamCrack attempts to enumerate weak passwords using a dictionary style attck on the Microsoft IIS Accounts Manager. IISamDiscover uses the Accounts Manager User Existence Disclosure Vulnerability to confirm or deny the exsistance of a user on the machine using a list of probable usernames.
Read This Article Article Read 144 Times
Results 1 - 3 of 3 Results per-page: 5 | 10 | 20 | 50