CVE-2018-7600-drupalgeddon2-scanner
Drupalgeddon2 POC + Scanner (adapted)
ONLY FOR Drupal < 7.58 (Not tested on Drupal 8)
Requirements:
- python3
- requests (use pip install)
Usage:
+ c: Scan a CIDR range
+ f: Scan with a file as input (1 IP per line)
+ i: Scan a single IP
+ m: Scan multiple given IPs (separated by commas)
+ r: Scan a given IP range (use nmap's IP range format)
+ v: Print more verbose messages
Command:
python drupalgeddon2-scan.py <IP(s) to be scanned>
Note: Since this is meant as a scanner, the result/output of the run command will be ignored.
ONLY FOR EDUCATIONAL PURPOSES
POC adapted from FireFart @ https://github.com/FireFart/CVE-2018-7600