https://github.com/pandh4cker/pandagik

Image Magick Exploit for CVE-2016–3714
https://github.com/pandh4cker/pandagik

exploit imagemagick python3 rce

Last synced: 22 days ago
JSON representation

Image Magick Exploit for CVE-2016–3714

• Host: GitHub
• URL: https://github.com/pandh4cker/pandagik
• Owner: PandH4cker
• Created: 2022-04-26T17:12:36.000Z (about 4 years ago)
• Default Branch: master
• Last Pushed: 2022-04-26T17:22:02.000Z (about 4 years ago)
• Last Synced: 2025-12-26T19:35:26.715Z (6 months ago)
• Topics: exploit, imagemagick, python3, rce
• Language: Python
• Homepage:
• Size: 1000 Bytes
• Stars: 1
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# pandagik

## Author: [Raphael Dray](https://www.linkedin.com/in/raphaeldray/)

Image Magick Exploit (CVE-2016-3714) automated in Python 3.

### Usage:

```bash

❯ python3 pandagik.py -h

usage: pandagik.py [-h] (--mvg | --svg) LHOST LPORT

ImageTragick Exploit

positional arguments:

  LHOST       Listening IP

  LPORT       Listening Port

options:

  -h, --help  show this help message and exit

File Type:

  --mvg       MVG File

  --svg       SVG File

```

You can either generate a MVG (`--mvg`) or a SVG (`--svg`):

```bash

python3 pandagik.py --mvg 192.168.13.37 1337

```