Is there any exploits that could be embeded into a simple picture or office/document type file that would work with Office 2003 Windows 7 SP1 updated? I know there is a RTF exploit for word 2003, but it does not work if the computer has been patched to SP1.
I searched the database but did not find them, I did see a
TIFF exploit, but I was not sure how to use it.
I also saw, Microsoft Word 2003 - Record Parsing Buffer Overflow (MS09-027) (Metasploit)
Anyone has any tips?
Thanks
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Dox Anyone
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How To:
Brute-Force Nearly Any Website Login with Hatch
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Hack Coin-Operated Laudromat Machines for Free Wash & Dry Cycles
How To:
Perform Advanced Man-in-the-Middle Attacks with Xerosploit
How To:
Spy on Traffic from a Smartphone with Wireshark
How To:
Exploit Remote File Inclusion to Get a Shell
How to Hack Wi-Fi:
Getting Started with the Aircrack-Ng Suite of Wi-Fi Hacking Tools
How To:
Hack Android Using Kali (Remotely)
How To:
Make Your Malicious Android App Be More Convincing.
How To:
Make a Trojan Appear Legitimate
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
How To:
Make Your Own Bad USB
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Find Passwords in Exposed Log Files with Google Dorks
2 Responses
use a powershell attack vector with a meterpreter payload, that has been encoded using veil, that you can embed in any office doc using vbs scripts. name the doc something that warrents curiosity and blamo you're in. there are a couple of tutorials on doing what I just suggested floating around here somewhere. google is your friend
yes but that requires the victim to enable macro's ... I want something they can just double click.
Share Your Thoughts