CVE-2019-0708 PoC — Microsoft Remote Desktop Services 资源管理错误漏洞

Source

https://github.com/Ravaan21/Bluekeep-Hunter

Associated Vulnerability

Title:Microsoft Remote Desktop Services 资源管理错误漏洞 (CVE-2019-0708)
Description:A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Description

CVE-2019-0708, A tool which mass hunts for bluekeep vulnerability for exploitation.

Readme

# Bluekeep-Hunter
CVE-2019-0708

This uses metasploit module in order to scan and check if CVE-2019-0708 exists or not.
The objective of this is to check and confirm if computers in the organisations are actually vulnerable or not rather than using a simple checking of version and other parameters not being met. This checker solves that problem. It will hunt and exploit, just get the list of IPs from the IT manager. Making work of Security Departments being reduced 10x. Till date most common attacks against AD is EternalBlue.

Install and Usage:

To install clone this repository.

cd Bluekeep-Hunter

chmod +x bluekeephunter.sh

./bluekeephunter.sh targets.txt

Additional: To view usage ./blukeephunter.sh -h
 
 **DEMONSTRATION:**
 
 ![FINALDEMOBLUE](https://user-images.githubusercontent.com/48627542/190843346-8a6e5340-e9d6-403c-ace0-337890f4ec05.gif)

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!