关联漏洞
标题:
多款Intel产品安全漏洞
(CVE-2017-5689)
描述:Intel Management Engine(ME)是美国英特尔(Intel)公司的一个管理引擎,能够远程管理计算机。Intel Active Management Technology (AMT)、Intel Standard Manageability (ISM)和Intel Small Business Technology (SBT)都是其中的组件。 多款Intel产品中存在安全漏洞。攻击者可利用该漏洞获取系统权限。以下产品受到影响:Intel Active Management Technol
描述
Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689
介绍
Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689.
Webserver that listens on TCP port 16992. Replicates the behaviour of Intel's AMT management service.
If successfully exploited, content pulled from a HP machine is served to the attacker.
## Building -
```# go build```
## Running -
```# ./amthoneypot [logfile.txt]```
### Persistent Execution -
```# nohup ./amthoneypot logfile.txt &```
### TODO
- [ ] Add templating to make content dynamic / random
- [ ] Add error checking
文件快照
[4.0K] /data/pocs/24f7ed987fcb98aa1470de0574675af26f53b13a
├── [ 81] go.mod
├── [ 167] go.sum
├── [ 495] README.md
├── [3.2K] server.go
└── [4.0K] static
├── [2.8K] acl.htm
├── [3.7K] events.htm
├── [2.6K] fqdn.htm
├── [2.4K] hw-batt.htm
├── [1.9K] hw-disk.htm
├── [2.6K] hw-mem.htm
├── [2.6K] hw-proc.htm
├── [4.4K] hw-sys.htm
├── [3.2K] index.htm
├── [ 767] invalid.htm
├── [3.8K] ip.htm
├── [3.9K] ipv6.htm
├── [ 752] logo.gif
├── [ 737] logon.htm
├── [2.2K] power.htm
├── [1.9K] styles.css
└── [3.4K] wlan.htm
1 directory, 21 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。