linux-exploit-suggester easy scripts, Linux_Exploit_Suggester


This program run without arguments will perform a 'uname -r' to grab the Linux Operating Systems release version, and return a suggestive list of possible exploits. Nothing fancy, so a patched/back-ported patch may fool this script.
This script has been extremely useful on site and in exams
Usage
perl ./Linux_Exploit_Suggester.pl -k 4.11.7
root privilege escalation opportunities on Linux machine,

Sample Output

$ perl ./Linux_Exploit_Suggester.pl -k 2.6.28

Kernel local: 2.6.28

Possible Exploits:
[+] sock_sendpage2
   Alt: proto_ops    CVE-2009-2692
   Source: http://www.exploit-db.com/exploits/9436
[+] half_nelson3
   Alt: econet    CVE-2010-4073
   Source: http://www.exploit-db.com/exploits/17787/
[+] reiserfs
   CVE-2010-1146
   Source: http://www.exploit-db.com/exploits/12130/
[+] pktcdvd
   CVE-2010-3437
   Source: http://www.exploit-db.com/exploits/15150/
[+] american-sign-language
   CVE-2010-4347
   Source: http://www.securityfocus.com/bid/45408/
[+] half_nelson
   Alt: econet    CVE-2010-3848
   Source: http://www.exploit-db.com/exploits/6851
[+] udev
   Alt: udev <1 .4.1="" alt:="" c="" can_bcm="" cve-2009-1185="" cve-2009-2692="" cve-2009-3547="" cve-2010-0415="" cve-2010-2959="" cve-2010-3081="" cve-2010-3301="" cve-2010-3848="" cve-2010-3850="" data="" do_pages_move="" econet="" enlightenment="" exit_notify="" exploits="" half_nelson1="" half_nelson2="" http:="" ia32syscall="" pipe.c_32bit="" pre="" ptrace_kmod2="" robert_you_suck="" sieve="" sock_sendpage="" source:="" spenders="" video4linux="" vulnerabilities="" wunderbar_emporium="" www.exploit-db.com="" www.securityfocus.com="">
Share To:

Hackerbrother

Post A Comment:

0 comments so far,add yours