b1tg/CVE-2023-38831-winrar-exploit

Stars
782
Rank 58,164 (Top 2 %)
Language
Python
Created about 1 year ago
Updated 12 months ago

b1tg/CVE-2023-38831-winrar-exploit

b1tg

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

CVE-2023-38831 winrar exploit generator

CVE-2023-38831 winrar exploit generator

Quick poc test

Generate the default poc for test

python cve-2023-38831-exp-gen.py poc
or
python cve-2023-38831-exp-gen.py CLASSIFIED_DOCUMENTS.pdf script.bat  poc.rar

Custom

Place the bait file and (evil) script file in the current directory, the bait file is recommended to be an image (.png, jpg) or a document (.pdf)
Run python cve-2023-38831-exp-gen.py <bait name> <script name> <output name> to generate your exploit

Screenshots

Infected version: winrar <= 6.22

Analysis Blog

https://b1tg.github.io/post/cve-2023-38831-winrar-analysis/

Reference

https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/

rust-windows-shellcode

Windows shellcode development in Rust

cobaltstrike-beacon-rust

CobaltStrike beacon in rust

rs-shellcode

Another shellcode runner 🦀 🐚

Ox-C2

Command & Control server and agent written in Rust

github-hosts-ebpf

基于 eBPF 修改 DNS 响应包加速 GitHub 访问

pickup

Copy files to clipboard from command line (Windows/OSX/Linux)

postwomen

curl-like tool , make edit POST payload more easily using vim

kvass

内网穿透工具，实现了 frp 的部分功能

venom

Meterpreter Payload Generator (WIP)

wifi-password

get wifi password on your system

bof-loader

CVE-2018-6065-exploit

syscall-finder

Find Windows syscall numbers from ntdll.dll

cobaltstrike-profile-parser

stuff

proxy-for-dummies

notes

energy-star-rust

port https://github.com/imbushuo/EnergyStar to rust

flare-emu-examples

b1-keylogger