Skip to content
master
Switch branches/tags
Go to file
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
bro
 
 
 
 
 
 
 
 
 
 

#BroIDS_Unicorn

simple plugin to detect shellcode on Bro IDS with Unicorn

install bro and addon broccoli-python:

https://www.bro.org https://github.com/bro/broccoli-python

install unicorm-engine:

https://github.com/unicorn-engine/unicorn

##Vuln server:

new terminal run bro:

bro -i eth0 bro/detector.bro

new terminal run unicorn:

python bro/checkshell.py

run vuln service:

cd vulnserver

./socat.sh vuln

##client

change ip -> vuln server

run exploit

python exploit_code/pwn.py

##Video demo

https://youtu.be/0nd1XJ9I4pQ

About

simple plugin to detect shellcode on Bro IDS with Unicorn

Resources

Releases

No releases published

Packages

No packages published