CVE-2020-0796 Local Privilege Escalation POC

(c) 2020 ZecOps, Inc. - https://www.zecops.com - Find Attackers' Mistakes
POC to check for CVE-2020-0796 / "SMBGhost"
Expected outcome: cmd.exe launched with system access
Intended only for educational and testing in corporate environments.
ZecOps takes no responsibility for the code, use at your own risk.
Please contact sales@ZecOps.com if you are interested in agent-less DFIR tools for Servers, Endpoints, and Mobile Devices to detect SMBGhost and other types of attacks automatically.

Usage

Make sure Python is installed, then run poc.py.

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
spawn_cmd_src		spawn_cmd_src
Injector.exe		Injector.exe
README.md		README.md
demo.gif		demo.gif
poc.py		poc.py
spawn_cmd.dll		spawn_cmd.dll
write_what_where.py		write_what_where.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

spawn_cmd_src

spawn_cmd_src

Injector.exe

Injector.exe

README.md

README.md

demo.gif

demo.gif

poc.py

poc.py

spawn_cmd.dll

spawn_cmd.dll

write_what_where.py

write_what_where.py

Repository files navigation

CVE-2020-0796 Local Privilege Escalation POC

Usage

References

About

Releases

Packages

Contributors 2

Languages

jamf/CVE-2020-0796-LPE-POC

Folders and files

Latest commit

History

Repository files navigation

CVE-2020-0796 Local Privilege Escalation POC

Usage

References

About

Topics

Resources

Stars

Watchers

Forks

Languages