go-exploit
go-exploit copied to clipboard
vulncheck-oss
A Go-based Exploit Framework
It's been brought up that we potentially may want to expose earlier flag parsing to the framework before `RunExploit` so that the options can influence the config instead of vice-versa....
Currently C2 type selection is hardcoded and singular, but under some conditions an exploit might need to have multiple executions. For example, I have had multiple exploits that need a...
Unrelated to go-exploit, I was looking at the DoE HackerOne page and discovered that this file format is a thing, and likely something go-exploit can ingest. https://hackerone.com/deptofdefense/policy_scopes
Unrelated to go-exploit, I was looking at the DoE HackerOne page and discovered that this file format is a thing, and likely something go-exploit can ingest. https://hackerone.com/deptofdefense/policy_scopes
It would be nice if the exploits self-documented any side affects they generate: evidence in logs (which logs), crashes, etc. I think this could be as simple as updating https://github.com/vulncheck-oss/go-exploit/blob/main/config/config.go...