CVE-2022-1388

F5 BIG-IP iControl REST vulnerability RCE exploit with Java.

Features

• Scan a single target
• Scan multiple targets
• Exploit with a shell

Setup Lab

• You can find the lab Here

Run

You can run the code directly by user# javac main.java followed by user# java main help

If you don't have JVM, you can execute user# ./main help. GLibc-x86_64-linux.

Screenshot

Author

Zeyad Azima
Morad A. Mokhtar Since 1 June 2022