admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create 青藤云 EDR 权限提升漏洞.md

Browse Source
This commit is contained in:
wy876 2023-08-23 12:47:40 +08:00 committed by GitHub
parent 8c00c3a80c
commit 83fe8367fc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 29 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
青藤云 EDR 权限提升漏洞.md Normal file
View File

@ -0,0 +1,29 @@
## 青藤云 EDR 权限提升漏洞
```
青藤的测试 POC
local function save_python_info(ctx, info_table)
local proc_names = {"python.exe"}
local procs_ret = ctx.get_proc_list_info_rely(ctx, proc_names)
if next(procs_ret) == nil then
return
end
-- call get version
-- ... 省略无关代码
get_python_ver(proc) -- ... 省略无关代码
end
function get_python_ver(proc)
if proc == nil then
return "" end
if file_api.file_exists(proc.path) then
local cmdline = "\"" .. proc.path .. "\" -V"
local ret, output = common.execute_shell(cmdline)
if ret == 0 and output and output ~= "" then
return regex.match(output, "\\d.+\\d")
else
agent.error_log("get python version info error:" .. tostring(ret))
return "" end
end
End
```