Skip navigation.


MS09-006 exploit from Black Security is still effective despite KB958690 patch


In my lab I tested against a VM (Windows XP SP3) with the patch for this vulnerability and the exploit code still succeeds.

Here's a link to the PoC code:

Can anyone verify this for me?

Looking For JBIG2 Samples

| |

Trying to find a few samples for the latest Adobe vulnerability.

rays worm sample


Rays worm which spreads itself in USB memories using desktop.ini, I need sample...

How malware makes autorun using desktop.ini ?

Thanks from now!

Microsoft Excel Invalid Pointer Exploit Sample



There is an XLS exploit file in wild which exploits Invalid Object Reference vulnerability.

Does anyone have sample? Please share...

Thanks from now!

PDF JBIG2 Exploit Sample



I need a sample PoC which is exploited in wild for Acrobat JBIG2 vulnerability.

There is 2 PoCs in the wild, one of them uses Javascript to spray heap for execution of code, another one doesn't use, if you have any of them, please share...

Thanks from now!

exploit kits


just wondering if anyone has some of the latest exploit kits they can share. thanks in advanced!

Barack Obama and Trojan.Script.Iframer

People have been reporting spam e-mail linking them to:


It turns out to be a anti-Obama website; they make fake claims such as

"Barack Obama's inauguration that was planned on 20th January 2009 is under the threat of failure. On the Eve of Inauguration Day President-elect Barack Obama made statement. He declared that he is definitely NOT ready for this position. Analysts say that Barack Obama has refused to be next president because he recognized inconsistency of his plan of stimulating USA economy"

Flaw in IE 7.0 (hosting websites)


"Malicious hackers are exploiting a zero-day flaw in Microsoft's Internet Explorer browser to launch a new wave of drive-by downloads, according to a warning from security researchers.

The Web attacks takes aim at users running IE 7 on Windows XP SP2 and includes the use of a Trojan downloader that commandeers Windows machines for nefarious purposes.

Please share the hosts/websites which are hosting this exploit if any one knows about it

MyDoom & Beagle Worms - Source code


Source code of a coule of worms that gave people a good run for their money

Download MyDoom here

Download Beagle here

RAR Archive Password: "infected" (without quotes)

P.S: Don't know if this has been posted earlier ... ;)

Cheers :)

Realmbot - Source code


Found this bot's source code lying in my drive, this is from 2006.

Download here

P.S: Iam still alive... up and running ...

Cheers :)

Syndicate content