GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ZecOps → CVE-2020-0796-POC

ZecOps / CVE-2020-0796-POC

Licence: other
CVE-2020-0796 Pre-Auth POC

Labels

pocsmbghostcve-2020-0796

Projects that are alternatives of or similar to CVE-2020-0796-POC

NSE-scripts
NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (+22.09%)
Mutual labels:  poc, smbghost
Pool2021
Pools organized for Epitech's students in 2021.
Stars: ✭ 19 (-77.91%)
Mutual labels:  poc
poc-github-actions
Various proofs of concept examples using Github Actions 🤖
Stars: ✭ 103 (+19.77%)
Mutual labels:  poc
PoC-Bank
Focus on cybersecurity | collection of PoC and Exploits
Stars: ✭ 83 (-3.49%)
Mutual labels:  poc
exprolog
ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
Stars: ✭ 131 (+52.33%)
Mutual labels:  poc
Android-Task-Injection
Task Hijacking in Android (somebody call it also StrandHogg vulnerability)
Stars: ✭ 52 (-39.53%)
Mutual labels:  poc
PocList
Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5…
Stars: ✭ 1,004 (+1067.44%)
Mutual labels:  poc
flaskbomb
GZip HTTP Bombing in Python for everyone
Stars: ✭ 30 (-65.12%)
Mutual labels:  poc
vnf-asterisk
Documentation, configuration, reference material and other information around an Asterisk-based VNF
Stars: ✭ 38 (-55.81%)
Mutual labels:  poc
HomeUniteUs
We're working with community non-profits who have a Host Home or empty bedrooms initiative to develop a workflow management tool to make the process scalable (across all providers), reduce institutional bias, and effectively capture data.
Stars: ✭ 22 (-74.42%)
Mutual labels:  poc
e2e-testing
Formal verification of Elastic-Agent and more using BDD
Stars: ✭ 22 (-74.42%)
Mutual labels:  poc
kubeadm-tf
PoC; terraform + kubeadm
Stars: ✭ 25 (-70.93%)
Mutual labels:  poc
CVE-2020-11651
CVE-2020-11651: Proof of Concept
Stars: ✭ 41 (-52.33%)
Mutual labels:  poc
PoC-ActiveX
PoC ActiveX SVG Document Execution
Stars: ✭ 21 (-75.58%)
Mutual labels:  poc
PocOrExp in Github
聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
Stars: ✭ 544 (+532.56%)
Mutual labels:  poc
cansecwest2017
No description or website provided.
Stars: ✭ 63 (-26.74%)
Mutual labels:  poc
Jawbreaker
A Python obfuscator using HTTP Requests and Hastebin.
Stars: ✭ 50 (-41.86%)
Mutual labels:  poc
iota-mqtt-poc
IOTA Proof of Concept, store MQTT messages on the tangle.
Stars: ✭ 40 (-53.49%)
Mutual labels:  poc
kubernetes-cluster
Vagrant As Automation Script
Stars: ✭ 34 (-60.47%)
Mutual labels:  poc
financial
POC de uma aplicação de domínio financeiro.
Stars: ✭ 62 (-27.91%)
Mutual labels:  poc
View All Similar Projects ➔

CVE-2020-0796 Pre-Auth POC

(c) 2020 ZecOps, Inc. - https://www.zecops.com - Find Attackers' Mistakes
POC to check for CVE-2020-0796 / "SMBGhost"
Expected outcome: Blue Screen
Intended only for educational and testing in corporate environments.
ZecOps takes no responsibility for the code, use at your own risk.
Please contact [email protected] if you are interested in agent-less DFIR tools for Servers, Endpoints, and Mobile Devices to detect SMBGhost and other types of attacks automatically.

Usage

CVE-2020-0796-POC.exe [<TargetServer>]

If <TargetServer> is omitted, the POC is executed on localhost (127.0.0.1).

demo

Compiled POC

You can get the compiled POC here.

Compiling

Use Visual Studio to compile the following projects:

  1. ProtoSDK\Asn1Base\Asn1Base.csproj
  2. ProtoSDK\MS-XCA\Xca.csproj
  3. ProtoSDK\MS-SMB2\Smb2.sln

Use the resulting exe file to run the POC.

References

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].