GithubHelp home page GithubHelp logo

ykankaya / cve_2020_0796_cna Goto Github PK

View Code? Open in Web Editor NEW

This project forked from rvn0xsy/cve_2020_0796_cna

0.0 1.0 0.0 80 KB

Cobalt Strike AggressorScripts CVE-2020-0796

Home Page: https://payloads.online

C 99.96% C++ 0.04%

cve_2020_0796_cna's Introduction

CVE-2020-0796-CNA

根据danigargu提供的POC进行修改,实现了Windows 10的提权复现并根据stephenfewer的反射DLL项目与CobaltStrike文档提供的接口开发了AggressorScripts。

本仓库仅仅为了交流反射DLL注入的实现与测试,因此不提供Release版本,请自行编译

具体还未进行稳定性测试,欢迎交流

影响版本(本地提权+远程蓝屏)

  • Windows 10 Version 1903 for 32-bit Systems
  • Windows 10 Version 1903 for x64-based Systems
  • Windows 10 Version 1903 for ARM64-based Systems
  • Windows Server, Version 1903 (Server Core installation)
  • Windows 10 Version 1909 for 32-bit Systems
  • Windows 10 Version 1909 for x64-based Systems
  • Windows 10 Version 1909 for ARM64-based Systems
  • Windows Server, Version 1909 (Server Core installation)

漏洞加固

  1. 更新系统

操作步骤:设置->更新和安全->Windows更新,点击“检查更新”。

  1. 禁止SMB的压缩功能

运行regedit.exe,打开注册表编辑器,在HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters建立一个名为DisableCompressionDWORD,值为1

  1. 使用防火墙对SMB通信445端口进行封禁

补丁地址:https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4551762

实现原理

推荐阅读:通过反射DLL注入来构建后渗透模块(第一课)

cve_2020_0796_cna's People

Contributors

rvn0xsy avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.