{"id":13845543,"url":"https://github.com/z1un/seeyon_exp","last_synced_at":"2025-07-12T02:31:52.585Z","repository":{"id":48969690,"uuid":"394298729","full_name":"z1un/seeyon_exp","owner":"z1un","description":"致远OA漏洞综合利用脚本","archived":false,"fork":false,"pushed_at":"2021-08-09T13:30:32.000Z","size":14,"stargazers_count":118,"open_issues_count":0,"forks_count":19,"subscribers_count":4,"default_branch":"master","last_synced_at":"2024-08-05T17:44:42.319Z","etag":null,"topics":["exp","seeyon","seeyonexp","seeyonoa"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/z1un.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-08-09T13:18:06.000Z","updated_at":"2024-05-10T05:22:13.000Z","dependencies_parsed_at":"2022-09-24T01:11:47.225Z","dependency_job_id":null,"html_url":"https://github.com/z1un/seeyon_exp","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z1un%2Fseeyon_exp","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z1un%2Fseeyon_exp/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z1un%2Fseeyon_exp/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z1un%2Fseeyon_exp/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/z1un","download_url":"https://codeload.github.com/z1un/seeyon_exp/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225784742,"owners_count":17523702,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["exp","seeyon","seeyonexp","seeyonoa"],"created_at":"2024-08-04T17:03:27.942Z","updated_at":"2024-11-21T18:32:13.340Z","avatar_url":"https://github.com/z1un.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# 致远OA综合漏洞利用脚本\n\n覆盖漏洞\n\n```\n致远OA_A6_createMysql_数据库敏感信息泄露\n致远OA_A6_DownExcelBeanServlet_用户敏感信息下载\n致远OA_A6_initDataAssess_用户敏感信息泄露\n致远OA_A6_setextno_SQL注入Getshell\n致远OA_A6_test_SQL注入Getshell\n致远OA_A8_htmlofficeservlet_RCE\n致远OA_getSessionList_Session泄漏\n致远OA_ajax_登录绕过_任意文件上传\n致远OA_webmail_任意文件下载\n致远OA_Session泄露_任意文件上传\n致远OA_Fastjson_反序列化\n```\n\n其中致远OA_Fastjson_反序列化漏洞没有实现自动化，可利用工具：[JNDIExploit](https://github.com/feihong-cs/JNDIExploit)\n\n```bash\njava -jar JNDIExploit-1.2-SNAPSHOT.jar -i 0.0.0.0 -l 1389 -p 1289\n```\n\n先在vps运行以上JNDI反序列化漏洞利用工具，然后复制脚本提供的Payload，替换ldap链接到BurpSuite中发包测试发包，可回显。\n\n![202108092129583](https://oss.zjun.info/zjun.info/202108092129583.png)\n\n最后推荐一个关于致远OA数据库密码解码及相关笔记的项目：\n\nhttps://github.com/jas502n/OA-Seeyou\n\n参考：\n\nhttp://wiki.peiqi.tech/\n\nhttps://wiki.0-sec.org/\n\nhttps://github.com/Summer177/seeyon_exp","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fz1un%2Fseeyon_exp","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fz1un%2Fseeyon_exp","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fz1un%2Fseeyon_exp/lists"}