Skip to content

redforcesec/Dumpit

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
assets
 
 
static
 
 
README.md
 
 
autopwn.py
 
 
exploit.py
 
 
server.py
 
 
About Demo Resources Usage Legal disclaimer

README.md

About

DUMPit is an exploit for SHAREit mobile app abusing two recently discovered vulnerabilities affecting SHAREit Android application <= v 4.0.38. The first one allows an attacker to bypass SHAREit device authentication mechanism, and the other one enables the authenticated attacker to download arbitrary files from the user’s device. Both vulnerabilities were reported to the vendor and patches have been released.

Demo

DUMPit exploit demo

Resources

Usage

To launch the exploit server with GUI (Tested on windows,linux)

python server.py

To launch the autopwn module (Works on linux only)

python autopwn.py

Legal disclaimer

Usage of this tool for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

About

An exploit for SHAREit <= v 4.0.38

Resources

Readme
Activity

Stars

45 stars

Watchers

0 watching

Forks

23 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages