exp-windows ·

纪念方程式Equation Group,如linux般脏牛

主要工具介绍:一款类似Metasploit的Exploit框架

模块 漏洞 影响系统 默认端口
Easypi IBM Lotus Notes漏洞 Windows NT, 2000 ,XP, 2003 3264
Easybee MDaemon WorldClient电子邮件服务器漏洞 WorldClient 9.5, 9.6, 10.0, 10.1
Eternalblue SMBv2漏洞(MS17-010) Windows XP(32),Windows Server 2008 R2(32/64),Windows 7(32/64) 139/445
Doublepulsar SMB和NBT漏洞 Windows XP(32), Vista, 7, Windows Server 2003, 2008, 2008 R2 139/445
Eternalromance SMBv1漏洞(MS17-010)和 NBT漏洞 Windows XP, Vista, 7, Windows Server 2003, 2008, 2008 R2 139/445
Eternalchampion SMB和NBT漏洞 Windows XP, Vista, 7, Windows Server 2003, 2008, 2008 R2, 2012, Windows 8 SP0 139/445
Eternalsynergy SMB和NBT漏洞 Windows 8, Windows Server 2012 139/445
Explodingcan IIS6.0远程利用漏洞 Windows Server 2003 80
Emphasismine IMAP漏洞 IBM Lotus Domino 6.5.4, 6.5.5, 7.0, 8.0, 8.5 143
Ewokfrenzy IMAP漏洞 IBM Lotus Domino 6.5.4, 7.0.2 143
Englishmansdentist SMTP漏洞 25
Erraticgopher RPC漏洞 Windows XP SP3, Windows 2003 445
Eskimoroll kerberos漏洞 Windows 2000, 2003, 2003 R2, 2008, 2008 R2 88
Eclipsedwing MS08-067漏洞 Windows 2000, XP, 2003 139/445
Educatedscholar MS09-050漏洞 Windows vista, 2008 445
Emeraldthread SMB和NBT漏洞 Windows XP, 2003 139/445
Zippybeer SMTP漏洞 445
Esteemaudit RDP漏洞 Windows XP, Windows Server 2003 3389

预装环境

python-2.6.6.msi

https://www.python.org/download/releases/2.6.6/

pywin32-221.win-amd64-py2.6.exe

https://sourceforge.net/projects/pywin32/files/pywin32/Build%20221/

项目地址:

github地址戳我

检测及防御:

老外的一个检测Doublepulsar后门的脚本:

github地址戳我

简单用法:

参与评论