Durzosploit is a javascript exploits generator framework that works through the console. This goal of that project is to quickly and easily generate working exploits for cross-site scripting vulnerabilities in popular web applications or web sites.It does not find browser vulnerabilities, it's only a framework containing exploits.
MPack is a PHP-based malware kit produced by Russian crackers. Since 2006, a new version is thought to have been released roughly every month. It is thought to have been used to infect up to 160,000 PCs with keylogging. In August 2007 it was believed to have been used in an attack on the web site of the Bank of India which originated from the Russian Business Network.
Firepack: Exploit toolkit which utilizes PHP on the server side, on the client Javascript and Vbscript and exploits MSIE 6
Adpack stands for "Advanced Pack" and was written in PHP on the server side along with SQL backend for tracking and statistics.
Neosploit is an advanced exploit framework to compromise web site visitors. It's not as popular as the Mpack toolkit but has gained popularity. Used as a CGI script, it can support multiple users from the same script. The exploit code will be the same from all users but the delivered executables can be different. Similar to other toolkits this one provide various statistics too. The following information about the visitor is logged: Operating System, Web browser and its version, IP address, and the Referer.Delivered exploit code is obfuscated using custom Javascript decoding function. The function name and all local variables are random in order to avoid detection by Network IDS. Often, several layers of obfuscation with anti-decoding tricks are used to deter the faint-hearted. It seems that development of this exploit pack has ended. Apparently, efforts which are put into development are not returning enough income and support is ending.
For more details, see http://dxp2532.blogspot.com
No comments:
Post a Comment