zoukankan      html  css  js  c++  java

  • 微软3389远程漏洞CVE-2019-0708批量检测工具

    0x001 Win下检测

    https://github.com/robertdavidgraham/rdpscan
C:UsersK8teamDesktop
dpscan-mastervs10Release 的目录


2019/06/02  02:11    <DIR>          .
2019/06/02  02:11    <DIR>          ..
2019/06/02  01:55         2,582,016 libcrypto-1_1.dll
2019/06/02  01:57           619,520 libssl-1_1.dll
2019/06/02  02:04           172,032 rdpscan.exe
3 个文件      3,373,568 字节
2 个目录  2,462,433,280 可用字节


C:UsersK8teamDesktop
dpscan-mastervs10Release>rdpscan 192.168.1.101-192.168.1.105
192.168.1.101 - VULNERABLE - CVE-2019-0708
192.168.1.102 - VULNERABLE - CVE-2019-0708


C:UsersK8teamDesktop
dpscan-mastervs10Release>rdpscan 192.168.1.101-192.168.1.105
192.168.1.102 - SAFE - CredSSP/NLA required
192.168.1.101 - VULNERABLE - CVE-2019-0708

    0x002 Linux下检测

    https://github.com/SugiB3o/Check-vuln-CVE-2019-0708
root@kali:~/Desktop# ./rdesktop 192.168.1.101:3389
ERROR: Failed to open keymap en-us
[+] Registering MS_T120 channel.
Failed to negotiate protocol, retrying with plain RDP.
[+] Sending MS_T120 check packet (size: 0x20 - offset: 0x8)
[+] Sending MS_T120 check packet (size: 0x10 - offset: 0x4)
[!] Target is VULNERABLE!!!
  • 相关阅读:
    LNMP状态管理命令
    Gogs基本使用介绍
    初探Asp.net请求机制原理 1
    关于css定位
    JS不同浏览器图片载入处理
    js之队列01
    javascript 快速排序
    JavaScript prototype背后的工作原理
    关于javascrpt if快速判断说明
    js动态加载图片核心代码
  • 原文地址:https://www.cnblogs.com/17bdw/p/11484160.html
Copyright © 2011-2022 走看看