F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB# CVE-2022-1388
F5 BIG-IP iControl REST vulnerability RCE exploit with Java.
## Features
- Scan a single target
- Scan multiple targets
- Exploit with a shell
## Setup Lab
- You can find the lab <a href="https://github.com/Zeyad-Azima/CVE-2022-1388/tree/main/CVE2022-1388_LAB">Here</a>
## Run
You can run the code directly by `user# javac main.java` followed by `user# java main help`<br>
If you don't have JVM, you can execute `user# ./main help`. GLibc-x86_64-linux.
## Screenshot
<img src="/img/CVE-2022-1388.jpeg">
## Author
<a href="https://www.linkedin.com/in/zer0verflow/">Zeyad Azima</a>
<a href="https://www.linkedin.com/in/0x250/">Morad A. Mokhtar</a> Since 1 June 2022
[4.0K] /data/pocs/66e2aba2a8f2ea1a96f5d3187ae6d71b704a6de4
├── [4.0K] CVE2022-1388_LAB
│ ├── [ 242] Dockerfile
│ ├── [ 806] main.py
│ ├── [ 89] Makefile
│ ├── [ 431] README.md
│ └── [ 169] requirements.txt
├── [4.0K] img
│ └── [241K] CVE-2022-1388.jpeg
├── [4.0K] out
│ └── [ 12M] main
├── [ 684] README.md
└── [4.0K] src
├── [2.6K] getShell.java
├── [1.1K] JSON.java
├── [2.1K] main.java
├── [ 925] massiveCheck.java
├── [2.4K] sendCommand.java
├── [ 513] singleCheck.java
└── [1.2K] testConnection.java
4 directories, 15 files