Skip to content
/ zipslip-007 Public

Tool to create payload for exploiting zipslip vulnerability

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sickuritywizard/zipslip-007

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
README.md
README.md
 
 
zipslip-007.py
zipslip-007.py
 
 

Repository files navigation

zipslip-007

Tool to create payloads for exploiting ZipSlip Vulnerability

Usage

options:
  -h, --help               Show this help message and exit
  -i, --input PAYLOADFILE  Payload File that has to be written/overwritten on target server
  -o, --output OUTPUTFILE  Output File Name
  -d, --depth DEPTH.       Depth of the Traversal [Default: 3]
  -t, --type ARCHIVETYPE   File Type - zip,tar,gz,tgz,bz2,jar (Default: tar)
  -p, --path PATH          Path to append to the traversal. Ex: var/www/webroot
  --dir DIR                Adds All files in the provided Directory to the archive
  --os TARGETOS            Target Platform (win|unix) [Default:unix)
  -ex, --example           Show Usage Examples

Example

zipslip-007 -i payload.txt -o exploit.tar -d 3 -dir includeFiles/ -p "var/www/webroot/" -t tar

zipslip-007 -i payload.txt -o exploit.tar -d 3 -dir includeFiles/ -p "var/www/webroot/" -t bz2

About

Tool to create payload for exploiting zipslip vulnerability

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages