From c687e687edfc43e3fd5e128e3bd696b745fbc130 Mon Sep 17 00:00:00 2001
From: xiaoheihei1107 <62200676+xiaoheihei1107@users.noreply.github.com>
Date: Fri, 10 Sep 2021 14:33:43 +0800
Subject: [PATCH] Add Kyan Network monitoring time RCE

---
 Kyan/Kyan_time_RCE/README.md | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 Kyan/Kyan_time_RCE/README.md

diff --git a/Kyan/Kyan_time_RCE/README.md b/Kyan/Kyan_time_RCE/README.md
new file mode 100644
index 0000000..f37c5f9
--- /dev/null
+++ b/Kyan/Kyan_time_RCE/README.md
@@ -0,0 +1,9 @@
+# Kyan Network monitoring time RCE
+
+Kyan network monitoring equipment time.php can execute arbitrary commands after authentication, and can obtain server permissions with the account password leaked by the host.
+
+FOFA **query rule**: [app="Kyan设计"](https://fofa.so/result?qbase64=YXBwPSJLeWFu6K6%2B6K6hIg%3D%3D)
+
+# Demo
+
+![Kyan_Network_monitoring_time_RCE](Kyan_Network_monitoring_time_RCE.gif)