GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → onSec-fr → CVE-2020-0688-Scanner

onSec-fr / CVE-2020-0688-Scanner

Licence: MIT License
Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

Programming Languages

C#
18002 projects

Labels

microsoftexchangepentestingcve-2020-0688

Projects that are alternatives of or similar to CVE-2020-0688-Scanner

Exchangelib
Python client for Microsoft Exchange Web Services (EWS)
Stars: ✭ 787 (+1971.05%)
Mutual labels:  microsoft, exchange
Ruler
A tool to abuse Exchange services
Stars: ✭ 1,684 (+4331.58%)
Mutual labels:  exchange, pentesting
Mfcmapi
MFCMAPI
Stars: ✭ 501 (+1218.42%)
Mutual labels:  microsoft, exchange
Lnkup
Generates malicious LNK file payloads for data exfiltration
Stars: ✭ 205 (+439.47%)
Mutual labels:  microsoft, pentesting
vbo365-rest
Unofficial Self-Service Web Portal for Veeam Backup for Microsoft Office 365
Stars: ✭ 44 (+15.79%)
Mutual labels:  microsoft, exchange
Microsoft365
Manage Microsoft 365 with PowerShell
Stars: ✭ 30 (-21.05%)
Mutual labels:  microsoft, exchange
node-ews
A simple JSON wrapper for the Exchange Web Services (EWS) SOAP API.
Stars: ✭ 114 (+200%)
Mutual labels:  microsoft, exchange
CVE-2021-33766
ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
Stars: ✭ 37 (-2.63%)
Mutual labels:  microsoft, exchange
juice-shop-ctf
Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (+655.26%)
Mutual labels:  pentesting
microsoft-he4rt
A 2 day challenge to develop any project using Microsoft Graph and Azure
Stars: ✭ 15 (-60.53%)
Mutual labels:  microsoft
WinHub-98
A modern-looking userstyle for GitHub
Stars: ✭ 59 (+55.26%)
Mutual labels:  microsoft
SecurityExplained
SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Stars: ✭ 301 (+692.11%)
Mutual labels:  pentesting
CTF-Writeups
Repository of my CTF writeups
Stars: ✭ 25 (-34.21%)
Mutual labels:  pentesting
security-study-tutorial
Summary of online learning materials
Stars: ✭ 73 (+92.11%)
Mutual labels:  pentesting
CoinEx.Net
API wrapper for CoinEx
Stars: ✭ 34 (-10.53%)
Mutual labels:  exchange
bitmex-orderbook
The fastest order book implementation for the BitMEX WebSocket API.
Stars: ✭ 73 (+92.11%)
Mutual labels:  exchange
Activity-Recognition-CovMIJ
Skeleton-based method for activity recognition problem
Stars: ✭ 13 (-65.79%)
Mutual labels:  microsoft
xssmap
Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
Stars: ✭ 107 (+181.58%)
Mutual labels:  pentesting
avain
A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
Stars: ✭ 56 (+47.37%)
Mutual labels:  pentesting
script-samples
A sample gallery of scripts to manage all things Microsoft 365.
Stars: ✭ 56 (+47.37%)
Mutual labels:  microsoft
View All Similar Projects ➔

CVE-2020-0688-Scanner

Quick C# tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

Features

  • Scan hosts from an input file.
  • Passive check : grab exchange version by scraping html content.
  • Produces an output file.

Demo

How to use

Prerequisite

  • Windows
  • .NET framework 4.5.2

Download

git clone https://github.com/onSec-fr/CVE-2020-0688-Scanner.git

Run

./CVE-2020-0688-Scanner.exe [path_to_input_file]

Note : the input file can contain ip addresses, hostnames and FQDN.

Disclaimer

This tool has been developed to test your own system or for authorized security testing. Make sure you check with your local laws before running this tool.

Limitations

Since Exchange 2013, only the first 3 parts of the version number can be retrieved in this way. This means that sometimes the server may be vulnerable if it has not the very last cumulative update. In this case the server is flagged as "maybe patched".

References

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].