CVE-2020-0609

A proof-of-concept scanner to check an RDG Gateway Server for vulnerabilities CVE-2020-0609 & CVE-2020-0610.

Scanner for CVE-2020-0609 & CVE-2020-0610 A proof-of-concept scanner to check an RDP Gateway Server for vulnerabilities CVE-2020-0609 & CVE-2020-0610 Tested on: Windows Server 2012 x64 Windows Server 2016 x64 Windows Server 2019 x64 Disclaimer Scanning for memory corruption vulnerabilities is dangerous and can potentially crash systems Whilst this tool has b

👋 Looks like you've found my profile! Enjoy your stay (and don't take me too serious ^_^)! 💣 I'm a reverse engineer and software engineer that mostly dabbles around in Rust, C++ and various Assembly languages 👹 I spend most of my free time working on low-level projects such as but not limited to reverse engineering software (malware, anti cheats, games,

Scanning for Remote Desktop Gateways (Potentially unpatched CVE-2020-0609 and CVE-2020-0610)

Scanning for Remote Desktop Gateways (Potentially unpatched CVE-2020-0609 and CVE-2020-0610) The scanner has 2 modes of operation: Check for systems vulnerable to CVE-2020-0609 on UDP 3391 Uses the vuln scan code of githubcom/MalwareTech/RDGScanner Disclaimer Scanning for memory corruption vulnerabilities is dangerous and can potentially crash systems Whilst this tool

PoC for the Remote Desktop Gateway vulnerability - CVE-2020-0609 & CVE-2020-0610

BlueGate PoC for the Remote Desktop Gateway vulnerability - CVE-2020-0609 & CVE-2020-0610 Thanks to ollypwn for pointing out my silly mistake! Setup I'm using a patched version of pydtls as the original repository wouldn't build properly cd pydtls sudo python setuppy install Denial of Service A PoC for the DoS attack

Scanner for Zyxel products which are potentially vulnerable due to an undocumented user account (CVE-2020-29583)

Scanner for Zyxel products which are vulnerable due to an undocumented user account (CVE-2020-29583) Vuln details: wwweyecontrolnl/blog/undocumented-user-account-in-zyxel-productshtml (But I'm not sure if it's really possible to login with zyfwp via the web interface? Any reports would be appreciated Also the link to the "full list of affected devices

This repository is my own list of tools / useful stuff for pentest, defensive activities, programming, lockpicking and physical security

Infosec Useful Stuff This repository is my own list of tools / useful stuff for pentest, defensive activities, programming, lockpicking and physical security (all resources are in English only) If you want to add something you can ask a pull request or send me the link on @Sh0ckFR ;) Menu Reverse Engineering / Pown Open Source Intelligence Pentesting Social Engineering / Phish

PoC (DoS + scanner) for CVE-2020-0609 & CVE-2020-0610 - RD Gateway RCE

BlueGate Proof of Concept (Denial of Service + scanner) for CVE-2020-0609 and CVE-2020-0610 These vulnerabilities allows an unauthenticated attacker to gain remote code execution with highest privileges via RD Gateway for RDP Please use for research and educational purpose only Usage Make sure you have pyOpenSSL installed for python3 usage: BlueGatepy [-h] -M {check,dos} [