Monday, August 31, 2020

Voodoo-Kali - Kali Linux Desktop On Windows 10

Iemhacker-kali-windows

How it works?
 * Kali Linux with XFCE Desktop Environment in Windows Subsystem for Linux (WSL)
 * VcXsrv X Server for Windows is doing the hard GUI lifting
 * XFCE is started natively in WSL and displayed by VcXsrv

Install Voodoo-Kali:
 1, Enable WSL and install Kali Linux from the Microsoft Store. Read Install Kali Linux desktop on Windows 10 from Microsoft Store

 2, To start Kali Linux in Windows 10, open Command Prompt and enter the command: kali

 3, Enter this commands:
      apt install wget -y 
      wget https://raw.githubusercontent.com/Re4son/WSL-Kali-X/master/install-WSL-Kali-X
      bash ./install-WSL-Kali-X

 4, Download and install VcXsrv Windows X Server from SourceForge

 5, Start VcXsrv, accept change in firewall rules, exit VcXsrv

Run Voodoo-Kali:
   Start kali in Windows as normal user (that's default), and launch Voodoo-Kali:
    * as normal user: ./start-xfce
    * as root: sudo /root/xtart-xfce

Run Kali Desktop in an RDP session:
   In Kali Linux WSL, type: sudo /etc/init.d/xrdp start
   In Windows 10, open Run and enter mstsc.exe and connect to "127.0.0.1:3390"
remote%2Bdesktop

Status: Voodoo-Kali is in its infancy and it is far from being elegant. I'm working on it though and step by step I'll push out improvements. Below a snippet of the To-Do list:
 * Clean up and comment the scripts
 * Make for a cleaner exit
 * Better error handling and dependency checking (get rid of sleep, etc.)
 * Improve stability of Java programs
 * Improve the looks??
 * …

   Any help is truly appreciated, in any shape or form – from tips to pull requests.
   Why don't you join the forums to discuss?

Further Information:
 * Offsec – Kali Linux in the Windows App Store
 * MSDN – Windows Subsystem for Linux Overview

                                       Download Voodoo-Kali

Related news


  1. Hacking Tools For Windows
  2. Best Pentesting Tools 2018
  3. Computer Hacker
  4. Hacker Tools For Pc
  5. Hacking Tools Mac
  6. Hacker Tools List
  7. Hacker Tools Apk Download
  8. Hackers Toolbox
  9. Hacking Tools 2019
  10. Pentest Tools Windows
  11. Pentest Tools Free
  12. Hacking Tools Name
  13. Pentest Tools Nmap
  14. Pentest Tools For Windows
  15. Pentest Tools For Windows
  16. Hacking Tools For Games
  17. Hacking Tools For Games
  18. What Are Hacking Tools
  19. Hack Tools
  20. Pentest Tools Url Fuzzer
  21. Hacker Tools Github
  22. New Hacker Tools
  23. Hack Tools Online
  24. Hacker Tools For Windows
  25. Hacker Techniques Tools And Incident Handling
  26. Pentest Tools Find Subdomains
  27. Android Hack Tools Github
  28. Hack Tools Mac
  29. Computer Hacker
  30. Pentest Tools Open Source
  31. Hacking Tools For Kali Linux
  32. Hacker Hardware Tools
  33. Hacking Tools For Windows Free Download
  34. Hacker Tool Kit
  35. Hack Tools Github
  36. Hacker Tools
  37. Hack Tools Download
  38. Hacker Tools Free Download
  39. Hack Tools For Games
  40. Hak5 Tools
  41. Hak5 Tools
  42. Hack App
  43. Underground Hacker Sites
  44. How To Install Pentest Tools In Ubuntu
  45. Game Hacking
  46. Hacking Tools Windows
  47. Usb Pentest Tools
  48. Hacker Tools Github
  49. How To Install Pentest Tools In Ubuntu
  50. Game Hacking
  51. Hacking Tools For Pc
  52. Pentest Tools Apk
  53. Hacks And Tools
  54. Pentest Tools Kali Linux
  55. Hacking Tools Online
  56. Hacker Tools For Mac
  57. Pentest Tools List
  58. Hacking Tools Mac
  59. Hacking Tools Usb
  60. Install Pentest Tools Ubuntu
  61. Wifi Hacker Tools For Windows
  62. Usb Pentest Tools
  63. Hacking Tools For Windows Free Download
  64. Install Pentest Tools Ubuntu
  65. Hacking Tools Usb
  66. Hack Rom Tools
  67. Hack Tools Github
  68. Hacks And Tools
  69. Pentest Tools Apk
  70. Nsa Hack Tools
  71. Hack Tools For Mac
  72. Hacker Hardware Tools
  73. Underground Hacker Sites
  74. Pentest Automation Tools
  75. Pentest Box Tools Download
  76. Top Pentest Tools
  77. Pentest Tools
  78. How To Hack
  79. Pentest Tools Kali Linux
  80. Pentest Recon Tools
  81. Growth Hacker Tools
  82. Hacker Tools For Mac
  83. Hacking Tools And Software
  84. Termux Hacking Tools 2019
  85. Hacker Tool Kit
  86. Hacking Tools 2019
  87. Ethical Hacker Tools
  88. Hacking Tools Hardware
  89. Pentest Tools Nmap
  90. Hacking Tools And Software
  91. Nsa Hack Tools
  92. Hacker Techniques Tools And Incident Handling
  93. Pentest Tools Nmap
  94. Hacker Tools Apk
  95. Black Hat Hacker Tools
  96. Hacking Tools For Kali Linux
  97. Hacker Tools Free Download
  98. What Are Hacking Tools
  99. Pentest Tools Url Fuzzer
  100. Hacker Tools 2019
  101. Hack Apps
  102. Hacking Tools For Mac
  103. Hacking Tools Name
  104. How To Install Pentest Tools In Ubuntu
  105. Hack Tools 2019
  106. Hacking Tools Windows 10
  107. Pentest Tools Open Source
  108. Pentest Tools Framework
  109. Free Pentest Tools For Windows
  110. Hacker Techniques Tools And Incident Handling
  111. Hacking Tools For Windows 7
  112. Hack Tool Apk No Root
  113. Pentest Tools
  114. Hacker Tools Hardware
  115. Tools Used For Hacking
  116. Free Pentest Tools For Windows
  117. Hackrf Tools
  118. Hacking Tools
  119. Hack Tools
  120. Hacker Tools Online
  121. Hack Tools
  122. Nsa Hacker Tools
  123. Pentest Tools For Windows
  124. Hack Tools For Games
  125. Best Hacking Tools 2020

Sunday, August 30, 2020

John The Ripper


"A powerful, flexible, and fast multi-platform password hash cracker John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types which are most commonly found on various Unix flavors, as well as Kerberos AFS and Windows NT/2000/XP LM hashes. Several other hash types are added with contributed patches. You will want to start with some wordlists, which you can find here or here. " read more...

Website: http://www.openwall.com/john

More info
  1. Hacking Tools Github
  2. Pentest Automation Tools
  3. How To Make Hacking Tools
  4. Pentest Tools Website Vulnerability
  5. Hacker Tools Online
  6. Hack Tools
  7. Pentest Tools Alternative
  8. Pentest Tools Android
  9. Game Hacking
  10. Best Hacking Tools 2019
  11. Hack Apps
  12. Hacking Tools Kit
  13. Pentest Recon Tools
  14. Hack Tools For Mac
  15. Hacker Tools For Windows
  16. Hacking Tools And Software
  17. Pentest Tools Open Source
  18. Hacker Tools For Ios
  19. Pentest Tools Url Fuzzer
  20. Beginner Hacker Tools
  21. Growth Hacker Tools
  22. Hack Website Online Tool
  23. Hacker Tools Software
  24. Hack Rom Tools
  25. Physical Pentest Tools
  26. Hacking Tools Windows 10
  27. Hack Tools 2019
  28. Hack Apps
  29. Hack App
  30. Best Hacking Tools 2020
  31. Hacker Tool Kit
  32. Hacker Tools For Pc
  33. Computer Hacker
  34. Pentest Tools Tcp Port Scanner
  35. Hacking Tools 2020
  36. Hacks And Tools
  37. Hacker Tools 2019
  38. How To Make Hacking Tools
  39. Growth Hacker Tools
  40. Hacker Security Tools
  41. Black Hat Hacker Tools
  42. New Hacker Tools
  43. Hacker Tools 2020
  44. Pentest Tools Open Source
  45. Tools Used For Hacking
  46. Best Hacking Tools 2020
  47. Hack Tools
  48. Pentest Tools Bluekeep
  49. Pentest Box Tools Download
  50. Pentest Reporting Tools
  51. Wifi Hacker Tools For Windows
  52. Hacking Tools For Windows Free Download
  53. Hacking Tools For Mac
  54. Hacking Tools Download
  55. Pentest Tools For Windows
  56. Pentest Automation Tools
  57. Hacker Tool Kit
  58. Hack Tools For Ubuntu
  59. Hack Website Online Tool
  60. Hacker Tools Apk
  61. Hacking Tools Kit
  62. Hacker Search Tools
  63. Hacking Tools For Kali Linux
  64. Hacker
  65. What Is Hacking Tools
  66. Hack Tools For Ubuntu
  67. Wifi Hacker Tools For Windows
  68. Hack Apps
  69. Best Pentesting Tools 2018
  70. Hacker Tools Mac
  71. Hacker Tools Online
  72. Pentest Tools Review
  73. Hacking Apps
  74. Underground Hacker Sites
  75. Hack Tool Apk
  76. Bluetooth Hacking Tools Kali
  77. Hacking Tools Github
  78. Tools Used For Hacking
  79. Tools 4 Hack
  80. Tools For Hacker
  81. World No 1 Hacker Software
  82. Pentest Tools Framework
  83. Hack Tools Github
  84. Pentest Automation Tools
  85. Usb Pentest Tools
  86. Hack Apps
  87. Hacker Tools For Pc
  88. Hack App
  89. Growth Hacker Tools
  90. Pentest Tools List
  91. Pentest Tools Android
  92. Nsa Hack Tools
  93. Pentest Tools For Android
  94. Hacking Tools Hardware
  95. Pentest Tools Website
  96. Pentest Tools List
  97. Pentest Tools Nmap
  98. Pentest Tools List
  99. Tools Used For Hacking
  100. Hacker Tools 2019
  101. Wifi Hacker Tools For Windows
  102. Computer Hacker
  103. Hacker Tools For Ios
  104. Pentest Tools Framework
  105. Hacking Tools For Pc
  106. Pentest Tools For Mac
  107. Hacker Search Tools
  108. Hacker Tools 2020
  109. Hack Tools For Games
  110. Pentest Tools Online
  111. Hack Tools For Windows

wpCrack - Wordpress Hash Cracker


Wordpress Hash Cracker.

Installation
git clone https://github.com/MrSqar-Ye/wpCrack.git


Video


Related word


  1. Hackrf Tools
  2. Hacking Tools
  3. Pentest Tools For Ubuntu
  4. Hacking Tools For Mac
  5. New Hacker Tools
  6. Hacks And Tools
  7. Hacking App
  8. Hacker Tools Free
  9. Hacker Tools Free
  10. Pentest Tools Alternative
  11. Hack Tools Online
  12. Best Hacking Tools 2020
  13. Hacking Tools 2019
  14. Hack App
  15. Hacker Tools For Mac
  16. Hack Tools Mac
  17. New Hack Tools
  18. Hacking Tools Github
  19. Pentest Automation Tools
  20. Hacker Security Tools
  21. Pentest Tools Find Subdomains
  22. Pentest Tools Framework
  23. Hack Tool Apk
  24. Pentest Tools For Android
  25. Hacking Tools Software
  26. Pentest Tools Port Scanner
  27. Hacker Search Tools
  28. Pentest Tools Android
  29. Hack Tools
  30. Hacking Tools
  31. Hack Tools Download
  32. Hacking Tools For Beginners
  33. Best Hacking Tools 2020
  34. Hacking Tools Software
  35. Hack Tools For Games
  36. Hack Apps
  37. What Are Hacking Tools
  38. Hacker Tools Software
  39. Hacker Tools Hardware
  40. Ethical Hacker Tools
  41. Hack Website Online Tool
  42. Easy Hack Tools
  43. Hacking Tools
  44. Hacker Tools Linux
  45. Hacker Tools For Mac
  46. Hack Tools
  47. Wifi Hacker Tools For Windows
  48. Hacking Tools Pc
  49. How To Hack
  50. Hacking Tools Free Download
  51. Hack Rom Tools
  52. Hacker Tools
  53. Hacking Tools For Windows 7
  54. Pentest Tools Url Fuzzer
  55. Pentest Tools Kali Linux
  56. Hacker Tools 2019
  57. Hacking Tools 2019
  58. Pentest Tools Linux
  59. Pentest Tools Website
  60. Hacking Tools For Windows Free Download
  61. Pentest Tools Find Subdomains
  62. Hacker Tools Free
  63. What Is Hacking Tools
  64. Nsa Hacker Tools
  65. Hack Tools For Games
  66. Hacking Apps
  67. Hack Website Online Tool
  68. Pentest Tools Bluekeep
  69. Hack Tools Github
  70. Tools 4 Hack
  71. Hacker Tools Software
  72. Pentest Tools Framework
  73. Nsa Hack Tools Download
  74. How To Make Hacking Tools
  75. Free Pentest Tools For Windows
  76. Hacker Tools Github
  77. Hack And Tools
  78. Hack Tools Online
  79. Hack Tools Pc
  80. Hackrf Tools
  81. Beginner Hacker Tools
  82. Pentest Tools Port Scanner
  83. Pentest Tools Bluekeep
  84. Pentest Tools Download
  85. Nsa Hacker Tools
  86. Pentest Tools Find Subdomains
  87. Best Pentesting Tools 2018
  88. Underground Hacker Sites
  89. Pentest Tools Apk
  90. Pentest Tools Free
  91. Hack Tool Apk No Root
  92. Pentest Tools Alternative
  93. Hack And Tools
  94. Pentest Tools For Ubuntu
  95. Hacking Tools For Pc
  96. Hacking Apps
  97. Hack Tools Mac
  98. Easy Hack Tools
  99. What Is Hacking Tools
  100. Hacker Tools Hardware
  101. Hacking Apps
  102. Hacking Tools
  103. Hacking Tools Windows
  104. Pentest Automation Tools
  105. Hacking Tools 2020
  106. Hacker Tools List
  107. Pentest Box Tools Download
  108. How To Make Hacking Tools
  109. Hacker Tools Free Download
  110. Best Pentesting Tools 2018
  111. Hack Tools For Windows

An Overview Of Exploit Packs (Update 25) May 2015


Update May 12, 2015

Added CVE-2015-0359 and updates for CVE-2015-0336


Reference table : Exploit References 2014-2015


Update March 20, 2015

Added CVE-2015-0336

------------------------
Update February 19, 2015

Added Hanjuan Exploit kit and CVE-2015-3013 for Angler 

Update January 24, 2015 
http://www.kahusecurity.com

Added CVE-2015-3010, CVE-2015-3011 for Agler and a few reference articles. 
If you notice any errors, or some CVE that need to be removed (were retired by the pack authors), please let me know. Thank you very much!


Update December 12, 2014


Update Jan 8, 2014

 This is version 20 of the exploit pack table - see the added exploit packs and vulnerabilities listed below.

                                             Exploit Pack Table Update 20                                           
  Click to view or download from Google Apps

I want to give special thanks to Kafeine  L0NGC47,  Fibon and  Curt Shaffer for their help and update they made.  Note the new Yara rules sheet / tab for yara rules for exploit kit.
I also want to thank Kahu securityKafeineMalforsec and all security companies listed in References for their research.

If you wish to be a contributor (be able to update/change the exploits or add yara rules), please contact me :)
If you have additions or corrections, please email, leave post comments, or tweet (@snowfl0w) < thank you!

The Wild Wild West image was created by Kahu Security  - It shows current and retired (retiring) kits.

List of changed kits
Gong Da / GonDad Redkit 2.2 x2o (Redkit Light)Fiesta (=Neosploit)  Cool  Styxy DotkaChef
CVE-2011-3544CVE-2013-2551CVE-2013-2465CVE-2010-0188CVE-2010-0188CVE-2012-5692
CVE-2012-0507CVE-2013-2471CVE-2013-0074/3896CVE-2011-3402CVE-2013-1493
CVE-2012-1723CVE-2013-1493CVE-2013-0431
CVE-2013-0431
CVE-2013-2423
CVE-2012-1889CVE-2013-2460CVE-2013-0634 CVE-2013-1493
CVE-2012-4681CVE-2013-2551 CVE-2013-2423
CVE-2012-5076
CVE-2013-0422
CVE-2013-0634
CVE-2013-2465



Angler FlashPack = SafePack White Lotus Magnitude (Popads)Nuclear 3.x Sweet Orange 
CVE-2013-0074/3896CVE-2013-0074/3896CVE-2011-3544CVE-2011-3402CVE-2010-0188CVE-2013-2423
CVE-2013-0634CVE-2013-2551CVE-2013-2465CVE-2012-0507CVE-2012-1723CVE-2013-2471
CVE-2013-2551 CVE-2013-2551CVE-2013-0634CVE-2013-0422CVE-2013-2551
CVE-2013-5329CVE-2013-2460CVE-2013-2423
CVE-2013-2471 ??CVE-2013-2471CVE-2013-2460
CVE-2013-2551CVE-2013-2551

CK HiManNeutrino  Blackhole (last)Grandsoft  Private EK
CVE-2011-3544CVE-2010-0188CVE-2013-0431CVE-2013-0422CVE-2010-0188 CVE-2006-0003
CVE-2012-1889CVE-2011-3544CVE-2013-2460CVE-2013-2460CVE-2011-3544CVE-2010-0188
CVE-2012-4681CVE-2013-0634CVE-2013-2463*CVE-2013-2471CVE-2013-0422CVE-2011-3544
CVE-2012-4792*CVE-2013-2465CVE-2013-2465*and + all or someCVE-2013-2423CVE-2013-1347
CVE-2013-0422CVE-2013-2551CVE-2013-2551exploitsCVE-2013-2463CVE-2013-1493
CVE-2013-0634* switch 2463*<>2465*from the previousCVE-2013-2423
CVE-2013-3897Possibly + exploitsversionCVE-2013-2460
* removedfrom the previous
version

Sakura 1.x LightsOutGlazunov Rawin Flimkit  Cool EK (Kore-sh)Kore (formely Sibhost) 
cve-2013-2471CVE-2012-1723CVE-2013-2463CVE-2012-0507CVE-2012-1723CVE-2013-2460CVE-2013-2423
CVE-2013-2460CVE-2013-1347cve-2013-2471CVE-2013-1493CVE-2013-2423CVE-2013-2463CVE-2013-2460
and + all or someCVE-2013-1690CVE-2013-2423CVE-2013-2471CVE-2013-2463
exploitsCVE-2013-2465CVE-2013-2471
from the previous
version


Styx 4.0Cool Topic EK Nice EK
CVE-2010-0188CVE-2012-0755CVE-2013-2423CVE-2012-1723
CVE-2011-3402CVE-2012-1876
CVE-2012-1723CVE-2013-0634
CVE-2013-0422CVE-2013-2465
CVE-2013-1493cve-2013-2471
CVE-2013-2423and + all or some
CVE-2013-2460exploits
CVE-2013-2463from the previous
CVE-2013-2472version
CVE-2013-2551
Social Eng








=================================================================

The Explot Pack Table has been updated and you can view it here.

Exploit Pack Table Update 19.1  - View or Download from Google Apps

If you keep track of exploit packs and can/wish  to contribute and be able to make changes, please contact me (see email in my profile)
I want to thank L0NGC47, Fibon, and Kafeine,  Francois Paget, Eric Romang, and other researchers who sent information for their help.




Update April 28, 2013 - added CVE-2013-2423 (Released April 17, 2013) to several packs. 
Now the following packs serve the latest Java exploit (update your Java!)

  1. Styx
  2. Sweet Orange
  3. Neutrino
  4. Sakura
  5. Whitehole
  6. Cool
  7. Safe Pack
  8. Crime Boss
  9. CritX



Other changes
Updated:
  1. Whitehole
  2. Redkit
  3. Nuclear
  4. Sakura
  5. Cool Pack
  6. Blackhole
  7. Gong Da
Added:
  1. KaiXin
  2. Sibhost
  3. Popads 
  4. Alpha Pack
  5. Safe Pack
  6. Serenity
  7. SPL Pack

    There are 5 tabs in the bottom of the sheet
  1. 2011-2013
  2. References
  3. 2011 and older
  4. List of exploit kits
  5. V. 16 with older credits



March 2013
The Explot Pack Table, which has been just updated, has migrated to Google Apps - the link is below. The new format will allow easier viewing and access for those who volunteered their time to keep it up to date.

In particular, I want to thank
L0NGC47, Fibon, and Kafeine  for their help.

There are 5 tabs in the bottom of the sheet
  1. 2011-2013
  2. References
  3. 2011 and older
  4. List of exploit kits
  5. V. 16 with older credits
The updates include
  1. Neutrino  - new
  2. Cool Pack - update
  3. Sweet Orange - update
  4. SofosFO aka Stamp EK - new
  5. Styx 2.0 - new
  6. Impact - new
  7. CritXPack - new
  8. Gong Da  - update
  9. Redkit - update
  10. Whitehole - new
  11. Red Dot  - new





The long overdue Exploit pack table Update 17 is finally here. It got a colorful facelift and has newer packs (Dec. 2011-today) on a separate sheet for easier reading.
Updates / new entries for the following 13 packs have been added (see exploit listing below)


  1. Redkit 
  2. Neo Sploit
  3. Cool Pack
  4. Black hole 2.0
  5. Black hole 1.2.5
  6. Private no name
  7. Nuclear 2.2 (Update to 2.0 - actual v. # is unknown)
  8. Nuclear 2.1  (Update to 2.0 - actual v. # is unknown)
  9. CrimeBoss
  10. Grandsoft
  11. Sweet Orange 1.1 Update to 1.0 actual v. # is unknown)
  12. Sweet Orange 1.0
  13. Phoenix  3.1.15
  14. NucSoft
  15. Sakura 1.1 (Update to 1.0  actual v. # is unknown)
  16. AssocAID (unconfirmed)  






Exploit lists for the added/updated packs


AssocAID (unconfirmed)
09-'12
CVE-2011-3106
CVE-2012-1876
CVE-2012-1880
CVE-2012-3683
Unknown CVE
5


Redkit
08-'12
CVE-2010-0188
CVE-2012-0507
CVE-2012-4681
3

Neo Sploit
09-'12
CVE-2012-1723
CVE-2012-4681
2?

Cool
08-'12
CVE-2006-0003
CVE-2010-0188
CVE-2011-3402
CVE-2012-0507
CVE-2012-1723
CVE-2012-4681
5

Black hole 2.0
09-'12
CVE-2006-0003
CVE-2010-0188
CVE-2012-0507
CVE-2012-1723
CVE-2012-4681
CVE-2012-4969 promised
5

Black hole 1.2.5
08-'12
CVE-2006-0003
CVE-2007-5659 /2008-0655
CVE-2008-2992
CVE-2009-0927
CVE-2010-0188
CVE-2010-1885
CVE-2011-0559
CVE-2011-2110
CVE-2012-1723
CVE-2012-1889
CVE-2012-4681
11

Private no name
09-'12
CVE-2010-0188
CVE-2012-1723
CVE-2012-4681
3

Nuclear 2.2 (Update to 2.0 - actual v. # is unknown)
03-'12
CVE-2010-0188
CVE-2011-3544
CVE-2012-1723
CVE-2012-4681
4

Nuclear 2.1 (Update to 2.0 - actual v. # is unknown)
03-'12
CVE-2010-0188
CVE-2011-3544
CVE-2012-1723
3

CrimeBoss
09-'12
Java Signed Applet
CVE-2011-3544
CVE-2012-4681
3

Grandsoft
09-'12
CVE-2010-0188
CVE-2011-3544
2?

Sweet Orange 1.1
09-'12
CVE-2006-0003
CVE-2010-0188
CVE-2011-3544
CVE-2012-4681
4?

Sweet Orange 1.0
05-'12
CVE-2006-0003
CVE-2010-0188
CVE-2011-3544
3?

Phoenix  3.1.15
05-'12
CVE-2010-0842
CVE: 2010-0248
CVE-2011-2110
CVE-2011-2140
CVE: 2011-2371
CVE-2011-3544
CVE-2011-3659
Firefox social
CVE: 2012-0500
CVE-2012-0507
CVE-2012-0779
11

NucSoft
2012
CVE-2010-0188
CVE-2012-0507
2

Sakura 1.1
08-'12
CVE-2006-0003
CVE-2010-0806
CVE-2010-0842
CVE-2011-3544
CVE-2012-4681
5


Version 16. April 2, 2012

Thanks to Kahu security
for Wild Wild West graphic 

The full table in xls format - Version 16 can be downloaded from here. 



 










ADDITIONS AND CHANGES:

1. Blackhole Exploit Kit 1.2.3
Added:
  1. CVE-2011-0559 - Flash memory corruption via F-Secure
  2. CVE-2012-0507 - Java Atomic via Krebs on Security
  3. CVE-2011-3544 - Java Rhino  via Krebs on Security
2. Eleonore Exploit Kit 1.8.91 and above- via Kahu Security
Added:
  1. CVE-2012-0507 - Java Atomic- after 1.8.91was released
  2. CVE-2011-3544 - Java Rhino
  3. CVE-2011-3521 - Java Upd.27  see Timo HirvonenContagio, Kahu Security and Michael 'mihi' Schierl 
  4. CVE-2011-2462 - Adobe PDF U3D
Also includes
"Flash pack" (presumably the same as before)
"Quicktime" - CVE-2010-1818 ?
3. Incognito Exploit Pack v.2 and above 
there are rumors that Incognito development stopped after v.2 in 2011 and it is a different pack now. If you know, please send links or files.

Added after v.2 was released:
  1. CVE-2012-0507 - Java Atomic
See V.2 analysis via StopMalvertizing

4. Phoenix Exploit Kit v3.1 - via Malware Don't Need Coffee
Added:
  1. CVE-2012-0507 -  Java Atomic
  2. CVE-2011-3544 -  Java Rhino + Java TC (in one file)

5. Nuclear Pack v.2 - via TrustWave Spiderlabs


  1. CVE-2011-3544 Oracle Java Rhino
  2. CVE-2010-0840 JRE Trusted Method Chaining
  3. CVE-2010-0188 Acrobat Reader  – LibTIFF
  4. CVE-2006-0003 MDAC
6. Sakura Exploit Pack > v.1 via DaMaGeLaB

  1. CVE-2011-3544 - Java Rhino (It was in Exploitpack table v15, listing it to show all packs with this exploit)

7. Chinese Zhi Zhu Pack via Kahu Security and Francois Paget (McAfee)
  1. CVE-2012-0003 -  WMP MIDI 
  2. CVE-2011-1255 - IE Time Element Memory Corruption
  3. CVE-2011-2140 - Flash 10.3.183.x
  4. CVE-2011-2110 - Flash 10.3.181.x 
  5. CVE-2010-0806 - IEPeers

8. Gong Da Pack via Kahu Security 
  1. CVE-2011-2140  - Flash 10.3.183.x
  2. CVE-2012-0003 -  WMP MIDI  
  3. CVE-2011-3544 - Java Rhino 





  1. CVE-2010-0886 - Java SMB
  2. CVE-2010-0840 - JRE Trusted Method Chaining
  3. CVE-2008-2463 - Snapshot
  4. CVE-2010-0806 - IEPeers
  5. CVE-2007-5659/2008-0655 - Collab.collectEmailInfo
  6. CVE-2008-2992 - util.printf
  7. CVE-2009-0927 - getIco
  8. CVE-2009-4324 - newPlayer



Version 15. January 28, 2012

Additions - with many thanks to Kahu Security

 Hierarchy Exploit Pack
=================
CVE-2006-0003
CVE-2009-0927
CVE-2010-0094
CVE-2010-0188
CVE-2010-0806
CVE-2010-0840
CVE-2010-1297
CVE-2010-1885
CVE-2011-0611
JavaSignedApplet


Siberia Private
==========
CVE-2005-0055
CVE-2006-0003
CVE-2007-5659
CVE-2008-2463
CVE-2008-2992
CVE-2009-0075
CVE-2009-0927
CVE-2009-3867
CVE-2009-4324
CVE-2010-0806


Techno XPack
===========
CVE-2008-2992
CVE-2010-0188
CVE-2010-0842
CVE-2010-1297
CVE-2010-2884
CVE-2010-3552
CVE-2010-3654
JavaSignedApplet


"Yang Pack"
=========
CVE-2010-0806
CVE-2011-2110
CVE-2011-2140
CVE-2011-354




Version 14. January 19, 2012


Version 14 Exploit Pack table additions:

Credits for the excellent Wild Wild West (October 2011 edition) go to kahusecurity.com

With many thanks to  XyliBox (Xylitol - Steven),  Malware Intelligence blog,  and xakepy.cc for the information:

  1. Blackhole 1.2.1  (Java Rhino added, weaker Java exploits removed)
  2. Blackhole 1.2.1 (Java Skyline added)
  3. Sakura Exploit Pack 1.0  (new kid on the block, private pack)
  4. Phoenix 2.8. mini (condensed version of 2.7)
  5. Fragus Black (weak Spanish twist on the original, black colored admin panel, a few old exploits added)
If you find any errors or CVE information for packs not featured , please send it to my email (in my profile above, thank you very much) .
























 
The full table in xls format - Version 14 can be downloaded from here. 

The exploit pack table in XLSX format
The exploit pack table in csv format 

P.S. There are always corrections and additions thanks to your feedback after the document release, come back in a day or two to check in case v.15 is out.



Version 13. Aug 20, 2011


Kahusecurity issued an updated version of their Wild Wild West graphic that will help you learn Who is Who in the world of exploit packs. You can view the full version of their post in the link above.

Version 13 exploit pack table additions:
  1. Bleeding Life 3.0
  2. Merry Christmas Pack (many thanks to kahusecurity.com)+
  3. Best Pack (many thanks to kahusecurity.com)
  4. Sava Pack (many thanks to kahusecurity.com)
  5. LinuQ 
  6. Eleonore 1.6.5
  7. Zero Pack
  8. Salo Pack (incomplete but it is also old)



List of packs in the table in alphabetical order
  1. Best Pack
  2. Blackhole Exploit 1.0
  3. Blackhole Exploit 1.1
  4. Bleeding Life 2.0
  5. Bleeding Life 3.0
  6. Bomba
  7. CRIMEPACK 2.2.1
  8. CRIMEPACK 2.2.8
  9. CRIMEPACK 3.0
  10. CRIMEPACK 3.1.3
  11. Dloader
  12. EL Fiiesta
  13. Eleonore 1.3.2
  14. Eleonore 1.4.1
  15. Eleonore 1.4.4 Moded
  16. Eleonore 1.6.3a
  17. Eleonore 1.6.4
  18. Eleonore 1.6.5
  19. Fragus 1
  20. Icepack
  21. Impassioned Framework 1.0
  22. Incognito
  23. iPack
  24. JustExploit
  25. Katrin
  26. Merry Christmas Pack
  27. Liberty  1.0.7
  28. Liberty 2.1.0*
  29. LinuQ pack
  30. Lupit
  31. Mpack
  32. Mushroom/unknown
  33. Open Source Exploit (Metapack)
  34. Papka
  35. Phoenix  2.0 
  36. Phoenix 2.1
  37. Phoenix 2.2
  38. Phoenix 2.3
  39. Phoenix 2.4
  40. Phoenix 2.5
  41. Phoenix 2.7
  42. Robopak
  43. Salo pack
  44. Sava Pack
  45. SEO Sploit pack
  46. Siberia
  47. T-Iframer
  48. Unique Pack Sploit 2.1
  49. Webattack
  50. Yes Exploit 3.0RC
  51. Zero Pack
  52. Zombie Infection kit
  53. Zopack


----------------------------------------------
Bleeding Life 3.0
New Version Ad is here 

Merry Christmas Pack
read analysis at
kahusecurity.com
  
Best Pack
read analysis at 
kahusecurity.com
Sava Pack
read analysis at
kahusecurity.com
Eleonore 1.6.5 
[+] CVE-2011-0611
[+] CVE-2011-0559
[+] CVE-2010-4452
[-] CVE-2010-0886
Salo Pack
Old (2009), added just for
the collection


Zero Pack
62 exploits from various packs (mostly Open Source pack)
LinuQ pack
Designed to compromise linux servers using vulnerable PHPMyAdmin. Comes with DDoS bot but any kind of code can be loaded for Linux botnet creation.
LinuQ pack is PhpMyAdmin exploit pack with 4 PMA exploits based on a previous Russian version of the Romanian PMA scanner ZmEu. it is not considered to be original, unique, new, or anything special. All exploits are public and known well.


It is designed to be installed on an IRC server (like UnrealIRCD). IP ranges already listed in bios.txt can be scanned, vulnerable IPs and specific PMA vulnerabilities will be listed in vuln.txt, then the corresponding exploits can be launched against the vulnerable server. It is more like a bot using PMA vulnerabilities than exploit pack.
It is using
CVE-2009-1148 (unconfirmed)
CVE-2009-1149 (unconfirmed)
CVE-2009-1150 (unconfirmed)
CVE-2009-1151 (confirmed)




 ====================================================================
Version 12. May 26, 2011
additional changes (many thanks to kahusecurity.com)
Bomba
Papka

See the list of packs covered in the list below


The full table in xls format - Version 12 can be downloaded from here.
I want to thank everyone who sent packs and information  :)





Version 11 May 26, 2011 Changes:
    1. Phoenix2.7
    2. "Dloader" (well, dloader is a loader but the pack is  some unnamed pack http://damagelab.org/lofiversion/index.php?t=20852)
    3. nuclear pack
    4. Katrin
    5. Robopak
    6. Blackhole exploit kit 1.1.0
    7. Mushroom/unknown
    8. Open Source Exploit kit






    ====================================================================

    10. May 8, 2011 Version 10        Exploit Pack Table_V10May11
    First, I want to thank everyone who sent and posted comments for updates and corrections. 

    *** The Wild Wild West picture is from a great post about evolution of exploit packs by Kahu Security  Wild Wild West Update


    As usual, send your corrections and update lists.


    Changes:
    • Eleonore 1.6.4
    • Eleonore 1.6.3a
    • Incognito
    • Blackhole
    Go1Pack  (not included) as reported as being a fake pack, here is a gui. Here is a threatpost article referencing it as it was used for an attack 
    Also, here is another article claiming it is not a fake http://community.websense.com/blogs/securitylabs/archive/2011/04/19/Mass-Injections-Leading-to-g01pack-Exploit-Kit.aspx
    Go1 Pack CVE are reportedly
    CVE-2006-0003
    CVE-2009-0927
    CVE-2010-1423
    CVE-2010-1885

    Does anyone have this pack or see it offered for sale?

    Exploit kits I am planning to analyze and add (and/or find CVE listing for) are:

    • Open Source Exploit Kit
    • SALO
    • K0de

    Legend: 
    Black color entries by Francois Paget
    Red color entries by Gunther
    Blue color entries by Mila

    Also, here is a great presentation by Ratsoul (Donato Ferrante) about Java Exploits (http://www.inreverse.net/?p=1687)

    --------------------------------------------------------
     9.  April 5, 2011  Version 9        ExploitPackTable_V9Apr11

    It actually needs another update but I am posting it now and will issue version 10 as soon as I can.

    Changes:
    Phoenix 2.5
    IFramer
    Tornado
    Bleeding life

    Many thanks to Gunther for his contributions.
    If you wish to add some, please send your info together with the reference links. Also please feel free to send corrections if you notice any mistakes






    8. Update 8 Oct 22, 2010 Version 8 ExploitPackTable_V8Oct22-10

    Changes: 
    1. Eleonore 1.4.4 Moded added (thanks to malwareint.blogspot.com)
    2. Correction on CVE-2010-0746 in Phoenix 2.2 and 2.3. It is a mistake and the correct CVE is CVE-2010-0886 (thanks to etonshell for noticing)
    3. SEO Sploit pack added (thanks to whsbehind.blogspot.com,  evilcodecave.blogspot.com and blog.ahnlab.com)


    7. Update 7 Oct 18, 2010 Version 7 ExploitPackTable_V7Oct18-10 released
     thanks to SecNiche we have updates for Phoenix 2.4 :)
      
    We also added shorthand/slang/abbreviated names for exploits for easy matching of exploits to CVE in the future. Please send us more information re packs, exploit names that can be added in the list. Thank you!

     
    6. Update 6 Sept 27, 2010 Version 6 ExploitPackTable_V6Sept26-10 released
     Thanks to Francois Paget (McAfee) we have updates for Phoenix 2.2 and Phoenix 2.3


    5. Update 5. Sept 27, 2010 Version 5 ExploitPackTable_V5Sept26-10 released
    Added updates for Phoenix 2.1 and Crimepack 3.1.3

      
    4 Update 4  July 23, 2010  Version 4 ExploitPackTable_V4Ju23-10 released. Added a new Russian exploit kit called Zombie Infection Kit to the table. Read more at malwareview.com
    Update 3  July 7, 2010. Please read more about this on the Brian Krebs' blog Pirate Bay Hack Exposes User Booty 
    Update 2 June 27, 2010 Sorry but Impassioned Framework is back where it belongs - blue
    Update 1 June 24, 2010 Eleonore 1.4.1 columns was updated to include the correct list of the current exploits.

    Francois Paget  www.avertlabs.com kindly agreed to allow us to make additions to his Overview of Exploit Packs table published on Avertlabs (McAfee Blog)

    Many thanks to Gunther from ARTeam for his help with the update. There are a few blanks and question marks, please do no hesitate to email me if you know the answer or if you see any errors.



    Please click on the image below to expand it (it is a partial screenshot)  Impassioned Framework is tentatively marked a different color because the author claims it is a security audit tool not exploit pack. However, there was no sufficient information provided yet to validate such claims. The pack is temporarily/tentatively marked a different color. We'll keep you posted.


    Related links