Need help with SMBGhost?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

ollypwn
548 Stars 186 Forks 3 Commits 8 Opened issues

Description

Scanner for CVE-2020-0796 - SMBv3 RCE

Services available

!
?

Need anything else?

Contributors list

SMBGhost

Simple scanner for CVE-2020-0796 - SMBv3 RCE.

The scanner is for meant only for testing whether a server is vulnerable. It is not meant for research or development, hence the fixed payload.

It checks for SMB dialect 3.1.1 and compression capability through a negotiate request.

A network dump of the scanner running against a Windows 2019 Server (10.0.0.133) can be found under

SMBGhost.pcap
.

Usage

python3 scanner.py 

Workarounds

ADV200005 | Microsoft Guidance for Disabling SMBv3 Compression

Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters" DisableCompression -Type DWORD -Value 1 -Force

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.