(Edited 05-31-2026, 07:37 AM by asva.)
#1
This exploit targets CVE-2024-6387 (regreSSHion), a vulnerability in OpenSSH's server (sshd) on glibc-based Linux systems. 

It exploits a race condition in the signal handler of OpenSSH, potentially leading to remote code execution as root. 

Usage:

  1. Compile the exploit
    gcc -o regreSSHion exploit.c -lpthread
  2. Run the exploit
    ./regreSSHion <target_ip> <target_port>
    Replace <target_ip> & <target_port> with the IP address and port of the vulnerable OpenSSH server.
  3. Interpret Output
    Monitor the terminal for exploitation attempts and feedback. Adjust timing parameters or shellcode as necessary for successful exploitation.

Shellcode Customization:
You can customize the shellcode in the exploit.c file to execute different payloads or commands on the target system. The provided shellcode is a basic example that spawns a /bin/sh shell. Modify the shellcode[] array to suit your specific requirements.

Download Link: Hidden Content

[Image: PoC.png?raw=true]