关联漏洞
标题:
Grafana 路径遍历漏洞
(CVE-2021-43798)
描述:Grafana是Grafana实验室的一套提供可视化监控界面的开源监控工具。该工具主要用于监控和分析Graphite、InfluxDB和Prometheus等。 Grafana 8.0.0-beta1至8.3.0存在路径遍历漏洞,攻击者可利用该漏洞执行目录遍历攻击,访问本地文件。
描述
Automated Exploit Tool for Grafana CVE-2021-43798: Scanning common files that contain juicy informations and extracting SSH keys from compromised users.
介绍
# Automated Exploit Tool for Grafana CVE-2021-43798
## Overview
This project is an automated exploit tool designed to scan for and extract sensitive information from compromised Grafana instances vulnerable to CVE-2021-43798. The tool identifies vulnerable plugins and extracts SSH keys from compromised users.
## Features
- Automated scanning for vulnerable Grafana instances.
- Identification of vulnerable plugins.
- Extraction of sensitive files, including SSH keys.
- Support for single and multiple target scanning.
- Customizable path lists for scanning.
## Prerequisites
- Python 3.x
- Required Python libraries: `colorama`
## Installation
1. Clone the repository:
```sh
git clone https://github.com/hxlxmjxbbxs/grafxploit.git
cd grafxploit
```
2. Install the required Python library:
```sh
pip install colorama
```
## Usage
The tool can be run with various command-line options to specify targets, output directories, and additional paths to scan.
### Command-Line Options
- `-t`, `--target`: Check a single target in the format `proto://ip:port`.
- `-i`, `--input-targets`: Check multiple targets from a file in the format `proto://ip:port`.
- `-o`, `--output`: Directory to download the files if found.
- `-p`, `--paths`: File containing additional paths to check (default: `common/paths.txt`).
### Examples
1. Scan a single target:
```sh
python grafxploit.py -t http://192.168.1.100:3000
```
2. Scan multiple targets from a file:
```sh
python grafxploit.py -i targets.txt
```
3. Specify an output directory for downloaded files:
```sh
python grafxploit.py -t http://192.168.1.100:3000 -o output_directory
```
## Developed by
Halim Jabbes
- LinkedIn: [Halim Jabbes](https://www.linkedin.com/in/hxlxmj)
## Created On
22-07-2024
文件快照
[4.0K] /data/pocs/04e22491de11a7587795bbb0c54b9aca797269bf
├── [4.0K] common
│ └── [ 834] paths.txt
├── [ 11K] grafxploit.py
├── [543K] image.jpg
├── [1.0K] LICENSE
└── [1.8K] README.md
1 directory, 5 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。