-
Notifications
You must be signed in to change notification settings - Fork 13
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
202bb47
commit e2eef71
Showing
4 changed files
with
32 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| # Sunlogin_RCE-GUI- | ||
| 向日葵漏洞图形化利用工具 | ||
|
|
||
| 纯菜鸟第一次写图形化工具,各位大佬看看就好,勿喷。 | ||
|
|
||
|
|
||
|
|
||
| 初版主要长这样,集成了获取配置信息(读取向日葵的配置文件)和执行命令功能。 | ||
|
|
||
| <img src="img/1.jpg" alt="1" style="zoom:50%;" /> | ||
|
|
||
| ## 获取配置信息 | ||
|
|
||
| 该模块主要通过powershell、注册表、findstr命令来获取目标站点的配置文件信息; | ||
|
|
||
| 该模块集成了实战过程中遇到过的各个向日葵配置文件路径。 | ||
|
|
||
| <img src="img/2.jpg" alt="2" style="zoom:50%;" /> | ||
|
|
||
| ## 执行系统命令 | ||
|
|
||
| 该模块主要通过cmd和powershell来执行系统命令; | ||
|
|
||
| 发现其他方法的话后续会进行添加。 | ||
|
|
||
| <img src="img/3.jpg" alt="3" style="zoom:50%;" /> | ||
|
|
||
|
|
||
|
|
||
| # ⚠️ 免责声明 | ||
|
|
||
| 此工具仅作为网络安全攻防研究交流,请使用者遵照网络安全法合理使用! 如果使用者使用该工具出现非法攻击等违法行为,与本作者无关! |
