since xp is longer being patched by microsoft this should mean its very vulnerable now to remote exploits correct? are there any "zero-day" exploits that work on xp that should be forever available. it seems to me that xp being left in the cold my M$ and that XP still has a pretty large foothold this would be something great if your a hacker. But everything i find just points to netapi or dcom exploits which have been patched therefor any system that has all m$ patches is not vulnerable anymore. Especially if the system has most ports closed. exacmle xp machine with ports 135,139,445 open but all remote exploits are patched some time ago so any system that took updates in the past year are secured. Surely there has to be some remote exploit that will forever pwn an xp box right, or only those elite hackers that found the hole themselves and dont release
Forum Thread: Xp No Longer Patched, Open Exploits?
- Hot
- Active
-
Forum Thread:
How Can I Track My Iphone 7 Plus by IMEI?
0
Replies
3 hrs ago -
Forum Thread:
Final Year Projects in Coimbatore
0
Replies
7 hrs ago -
Forum Thread:
Kali Linux Stuck at Booting
19
Replies
7 hrs ago -
Forum Thread:
DDOS Attack Using Android (Termux) Without Root
0
Replies
7 hrs ago -
Forum Thread:
How to Perform Ddos Attack Using Termux Android
0
Replies
13 hrs ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
125
Replies
2 days ago -
Forum Thread:
Why, Where and How to Start Programming and Approach to Hacking.
12
Replies
2 days ago -
Forum Thread:
Kali Wont Start, Stuck at Kali Login:
16
Replies
2 days ago -
Forum Thread:
How Can I Fully Wipe Data Off a Phone?
3
Replies
2 days ago -
Forum Thread:
How to Find Wordpress Websites Admin Login Username's Using D-TECT
0
Replies
3 days ago -
Forum Thread:
Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom?
94
Replies
4 days ago -
Forum Thread:
Hack Cheating Wife's Windows 7 Admin Password
12
Replies
4 days ago -
Forum Thread:
What Are the Courses Which Leads to Become Like Elliot ?
1
Replies
4 days ago -
Forum Thread:
How to Install D-Tect in Termux Android
0
Replies
4 days ago -
Forum Thread:
How to Install and Use Sqlscan in Termux
0
Replies
5 days ago -
How to:
Embed MSF Payload in Original APK Files | Part #1 - Using TheFatRAT
13
Replies
5 days ago -
Forum Thread:
How to Install and Use Pureblood in Termux Without Root
0
Replies
5 days ago -
Forum Thread:
How to Install Websploit (Mitm Framework) In Termux Without Root
0
Replies
6 days ago -
Forum Thread:
Virilaxyn RX on the Evaluate Greatly
0
Replies
1 wk ago -
Forum Thread:
Metasploit Tutorial - Email Harvesting | Android Termux
0
Replies
1 wk ago
-
How To:
Hunt Down Social Media Accounts by Usernames with Sherlock
-
Raspberry Pi Alternatives:
10 Single-Board Computers Worthy of Hacking Projects Big & Small
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Hack Android Using Kali (Remotely)
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Top 10 Browser Extensions for Hackers & OSINT Researchers
-
How To:
Find Anyone's Private Phone Number Using Facebook
-
How To:
Gain Complete Control of Any Android Phone with the AhMyth RAT
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
Hack Like a Pro:
How to Spy on Anyone, Part 1 (Hacking Computers)
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How To:
Hack WPA & WPA2 Wi-Fi Passwords with a Pixie-Dust Attack Using Airgeddon
-
How To:
Automate Wi-Fi Hacking with Wifite2
6 Responses
The OS itself is hardly ever exploited. But a lot of social engineering and msfvenom stuff works great with XP
Frank:
A new RPC, remote code execution exploit was found in the wild just over a month ago that is not patched. The trojan is known as 'Trojan.Gimmiv.A'.
OTW
I have not heard about that one yet. I checked the exploit-db and found nothing.
Apparently, its a repackaged old RPC exploit.
I will look into this. I was kinda wondering the same because a lot of devices still run XP and that is scary.
A lot of devices do run xp still, including embedded devices that you cant really social engineer. Thats what grabbed my interest more and the reason i asked about remote code execution. Seeing as microsoft ended support i figured someone would figure out some remote exploit that in theory would work "forever" now.
You mentioned msfvenom but isnt that really just encoding the payloads to slip past av and firewalls, how would that help against an embedded machine or regular xp box on a lan that you cant social engineer.
Share Your Thoughts