CVE-2023-32784 PoC — KeePass 安全漏洞

Source

Associated Vulnerability

Description

After using the KeePass password dumper maybe some character parsed as ● is incorrect and you want to know the real character

Readme

# 🔒 CVE-2023-32784 Password Combinator Fixer


## USEFUL FOR KEEPER HTB MACHINE

After using the KeePass password dumper, some characters might be parsed as `●` incorrectly. This script helps you identify the real characters and fix the issue efficiently. 🚀

## 🛠️ How to Use


1. **Run the Script**  
    Execute the script with the required input file:  
    ```bash
    python3 generate_passwords_param.py <pattern> <unknown_chars> <output_file>
    ```
    - Example: `python3 generate_passwords.py "●ødgrød med fløde" "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789" "pass.txt"`

2. **Review the Output**  
    The script will generate a corrected version of the password combinations.

## ✨ Useful Modifications

- **Custom Character Mapping**  
  Modify the `character_map` dictionary in `fixer.py` to handle additional or specific character replacements.

- **Input/Output File Names**  
  Update the script to accept custom input and output file names via command-line arguments.

- **Logging**  
  Add logging to track which characters were replaced for better debugging.

## ⚠️ Disclaimer

Use this tool responsibly and only on data you own or have explicit permission to analyze. Unauthorized use may violate privacy laws. 🔐

File Snapshot

 [4.0K]  /data/pocs/6243ef959e6eaf3d803fa2f141f41ba93b83d4dd
├── [ 852]  generate_passwords.py
└── [1.2K]  README.md

0 directories, 2 files

Remarks