Skip to content

F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB

Notifications You must be signed in to change notification settings

Zeyad-Azima/CVE-2022-1388

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CVE-2022-1388

F5 BIG-IP iControl REST vulnerability RCE exploit with Java.

Features

  • Scan a single target
  • Scan multiple targets
  • Exploit with a shell

Setup Lab

  • You can find the lab Here

Run

You can run the code directly by user# javac main.java followed by user# java main help
If you don't have JVM, you can execute user# ./main help. GLibc-x86_64-linux.

Screenshot

Author

Zeyad Azima Morad A. Mokhtar Since 1 June 2022