Navigation Menu

Skip to content

MantisSTS/OpenXML-XXE-Generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits

samples

samples

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

filetypes.py

filetypes.py

 
 

generate.py

generate.py

 
 

payloads.py

payloads.py

 
 

Repository files navigation

OpenXML-XXE-Generator

A small Python script to automate the generation of docx and xlsx XXE payloads.

Usage

usage: generate.py [-h] --host HOST [--protocol PROTOCOL]
                   [--filetype FILETYPE] [--payload PAYLOAD] --outfile OUTFILE
                   [--exfile EXFILE]

OpenXML-XXE-Generator by Richard Clifford & Jordy Zomer

optional arguments:
  -h, --help           show this help message and exit
  --host HOST          The host to use in your payloads
  --protocol PROTOCOL  The protocol to use in your payloads
  --filetype FILETYPE  The type to use in your payloads. Supported formats:
                       svg, odt, ods, pptx, xlsx, xml, docx, odg, odp
  --payload PAYLOAD    The payload to use in your payloads. Supported
                       payloads: rdtd
  --outfile OUTFILE    The resulting payload file. Generated into ./output/
  --exfile EXFILE      The file you want to extract

Contributing?

If you like this tool or feel like helping out, feel free to add more samples/filetypes/payloads.

Payloads can be added in the payloads.py -> payloads Dictionary.

Filetypes can be added in the filetypes.py -> filetypes Dictionary.

The samples in the filetype dictionary can be added in the samples directory :)

About

A tool to generate OpenXML XXE Payloads written in Python3.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

14 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages