{"id":19207653,"url":"https://github.com/gill-singh-a/portainer-remote-root-shell-exploit","last_synced_at":"2026-04-19T14:36:22.109Z","repository":{"id":252550452,"uuid":"840765980","full_name":"Gill-Singh-A/Portainer-Remote-Root-Shell-Exploit","owner":"Gill-Singh-A","description":"A Simple Python Program that uses Requests Module to communicate with Docker API through Portainer and gets a Remote Root Shell on the Target Device","archived":false,"fork":false,"pushed_at":"2024-08-24T00:37:37.000Z","size":185,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-01-04T15:41:48.427Z","etag":null,"topics":["docker","exploit","portainer","python3","ssh"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Gill-Singh-A.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-08-10T16:08:05.000Z","updated_at":"2024-08-24T00:37:40.000Z","dependencies_parsed_at":"2024-08-10T17:30:24.906Z","dependency_job_id":"c6ad6318-6c28-4eff-a759-0930e4282c8c","html_url":"https://github.com/Gill-Singh-A/Portainer-Remote-Root-Shell-Exploit","commit_stats":null,"previous_names":["gill-singh-a/portainer-remote-root-shell-exploit"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Gill-Singh-A%2FPortainer-Remote-Root-Shell-Exploit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Gill-Singh-A%2FPortainer-Remote-Root-Shell-Exploit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Gill-Singh-A%2FPortainer-Remote-Root-Shell-Exploit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Gill-Singh-A%2FPortainer-Remote-Root-Shell-Exploit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Gill-Singh-A","download_url":"https://codeload.github.com/Gill-Singh-A/Portainer-Remote-Root-Shell-Exploit/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240280835,"owners_count":19776414,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","exploit","portainer","python3","ssh"],"created_at":"2024-11-09T13:21:41.318Z","updated_at":"2026-04-19T14:36:17.072Z","avatar_url":"https://github.com/Gill-Singh-A.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Portainer Remote Root Shell Exploit\nA Simple Python Program that uses Requests Module to communicate with Docker API through Portainer and gets a Remote Root Shell on the Target Device\n## Requirements\nLanguage Used = Python3\u003cbr /\u003e\nModules/Packages used:\n* socket\n* os\n* requests\n* json\n* paramiko\n* getpass\n* datetime\n* optparse\n* colorama\n* multiprocessing\n* time\n\u003c!-- --\u003e\nInstall the dependencies:\n```bash\npip install -r requirements.txt\n```\n## Setup\nAfter installing Docker on your local device, run the following commands as root user\n```bash\ndocker pull ubuntu:20.04\ndocker save ubuntu:20.04 -o ubuntu_image.tar\nchmod 666 ubuntu_image.tar\n```\n## Working\n![Working of Exploit](assets/images/working.png)\n## Result\nAfter Successful Exploitation, we can directly ssh to the target device as root user.\n### Note\nTo brute Force the Portainer Interface, we can use [Gill-Singh-A/Portainer-Brute-Force](https://github.com/Gill-Singh-A/Portainer-Brute-Force)\u003cbr /\u003e\nA Similar Exploit of Exposed Docker APIs : [Gill-Singh-A/Docker-API-Remote-Root-Shell-Exploit](https://github.com/Gill-Singh-A/Docker-API-Remote-Root-Shell-Exploit)\u003cbr /\u003e\nTo know more about the Process of Exploitation see the Blog [Getting Remote Root Shell on Devices via Portainer](https://medium.com/the-first-digit/getting-remote-root-shell-on-devices-via-portainer-8daf9631bfc7) on [Medium](https://medium.com/@amansg22)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgill-singh-a%2Fportainer-remote-root-shell-exploit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgill-singh-a%2Fportainer-remote-root-shell-exploit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgill-singh-a%2Fportainer-remote-root-shell-exploit/lists"}