ctgrab

UNLICENSE License

Stars
25
View Code on GitHub View on X
Ecosystems: Shell

ctgrab

These scripts are a proof of concept of an attack monitoring hosts from Certificate Transparency for unprotected web installers.

background

Certificate Transparency: Hacking web applications before they are installed / Golem.de

Def Con 25: Abusing Certificate Transparency Logs (talk announcement)

scripts

genctloglist

This checks for currently active CT logs and writes them to ctloglist.txt. That file is required for the other scripts

findwebinstaller

This checks a host for a vulnerable web installer.

ctgrab

This monitors CT logs for vulnerable web installers. It writes them to subdirectories named after the log URLs and certificate numbers. Vulnerable installers are logged in the file named webapps in the respective subdirectory.

wordpress hijack plugin

In the subdirectory hijack there is a wordpress plugin that will upload a PHP shell that allows executing commands and reverting a wordpress installation.

It can be called with:

https://[hostname]/wp-content/plugins/hijack/shell.php?secret=defcon2017

Related Projects
mini-kali

Docker image for hacking

13 Apr 2020 19
DockerMacExec

More payloads for Trojan infections, a stup!d memory of Trojan spreads

18 Mar 2024 4
lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

13 Mar 2018 1,900
atm

A set of AuToMation scripts for hacking.

05 Jan 2022 8
webcopilot

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssr...

29 Aug 2021 1,045
Grizzly

Trojan GUI && display panel

18 Mar 2024 8
SecToolSet

The security tool(project) Set from github。github安全项目工具集合

08 Feb 2017 1,251
Pentest-Cheat-Sheets

A collection of snippets of codes and commands to make your life easier!

23 Jan 2018 2,537
badocspcert

Check for certs affected by July 2020 OCSP intermediate incident

07 Jul 2020 14