Yet another CVE-2019-9670 exploit, but in Golang
🕵️ Zaber is a Golang tool created to exploit the vulnerability defined as CVE-2019-9670 (XXE in Zimbra Collaboration 8.7.X < 8.7.11p10)
A quick guide of how to install and use Zaber.
1. go install github.com/oppsec/zaber
2. zaber -u https://example.comYou can use go install github.com/oppsec/zaber@latest to update the tool
- Golang installed on your machine.
- Extremely fast
- Low RAM and CPU usage
- Made in Go
A quick guide of how to contribute with the project.
1. Create a fork from Zaber repository.
2. Download the project with git clone https://github.com/your/zaber.git
3. cd zaber/
4. Make your changes.
5. Commit and make a git push.
6. Open a pull request.- The developer is not responsible for any malicious use of this tool.