Automatic vuln scanner and exploiter for l7 ddos attacks using Chamilio CVE-2023-34960## 🧱 **ChExp DDoS**
Automatic vuln scanner and exploiter for l7 ddos attacks using Chamilio CVE-2023-34960.
## 🦠 **Zombies system**
The script is automatically scanning and exploiting vulnerables websites from a list for you. Infected websites are saved to results.txt and can be used in your futures attacks.
## 🔎 **How to use**
1. Install latest Python version from https://python.org or from `sudo apt-get install python3 python3-pip`
2. Download the repository and extract it
3. Open terminal and type `pip/pip3 install threadpool requests`
4. Open terminal and type `python3 chamilio.py`
5. Type `python3 chamilio.py -f yoururlfile.txt -t https://yourtarget.com attack_time`
## 📝 **Commands**
```bash
usage: ch.py [-h] [-u URL] [-f FILE] [-c CMD] [-t TARGET] [duration]
positional arguments:
duration Duration for DDoS in seconds
options:
-h, --help show this help message and exit
-u URL, --url URL Target URL; Example: python3 chamilio.py -u http://...
-f FILE, --file FILE url_list; Example: python3 chamilio.py -f url.txt
-c CMD, --cmd CMD command; Example: python3 chamilil.py -c http://...
-t TARGET, --target TARGET Target URL for DDoS; Example: python3 chamilio.py -t http://... DURATION (in seconds)
```
## 🚀 **Methods**
Currently the DDoS method used on the vulnerables wensites is some GET requests.
There is absolutely no bypass and this script can only down small unsecure sites.
## 💿 **Credits**
- tarsoul
- Chamilio CVE-2023-34960
## ⚠️ Disclaimer
```
All tools and projects are created for educational purposes and ethical hacking. Please use responsibly. I'm not responsible of your acts.
```
[4.0K] /data/pocs/b9fd487ea4b64d7f9eef041983dee77771492f52
├── [8.1K] chamilio.py
├── [ 34K] LICENSE
├── [1.7K] README.md
└── [5.6K] url.txt
0 directories, 4 files