Skip to content
/ ProxyLogon Public

ProxyLogon (CVE-2021-26855+CVE-2021-27065) Exchange Server RCE (SSRF->GetWebShell)

License

CC0-1.0 license
7 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kh4sh3i/ProxyLogon

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits

img

img

 
 

manual

manual

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

proxylogon.go

proxylogon.go

 
 

proxylogon.py

proxylogon.py

 
 

Repository files navigation

ProxyLogon

ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin. We have also chained this bug with another post-auth arbitrary-file-write vulnerability, CVE-2021-27065, to get code execution.

ProxyLogon For Python3

usage:
    sudo python3 proxylogon.py --host=target.com --mail=admin@target.com
    sudo python3 proxylogon.py --host=target.com --mails=./mails.txt

ProxyLogon For Go

usage:
    go run proxylogon.go -u target.com -e admin@target.com

Tips:

  1. recon target to find valid email address
  2. if you do not find any email, use bruteforce target with your email file.
  3. in some target automation exploit not work, you should bruteforce SID and replace in SID=500

manual pentest

sudo python2 /manual/check.py 
sudo python2 /manual/shell.py 
sudo python2 /manual/brute.py

references

About

ProxyLogon (CVE-2021-26855+CVE-2021-27065) Exchange Server RCE (SSRF->GetWebShell)

Topics

microsoft exploit exchange outlook cve 0day exchange-server zeroday proxylogon cve-2021-26855 microsoft-exchange-proxylogon 2021-27065

Resources

Readme

License

CC0-1.0 license
Activity

Stars

7 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages