mirror of
https://github.com/github/codeql.git
synced 2025-12-18 09:43:15 +01:00
31 lines
723 B
Python
31 lines
723 B
Python
#!/usr/bin/env python
|
|
|
|
from fastapi import FastAPI
|
|
from twisted.conch.endpoints import SSHCommandClientEndpoint
|
|
from twisted.internet.protocol import Factory
|
|
from twisted.internet import reactor
|
|
|
|
|
|
app = FastAPI()
|
|
|
|
|
|
@app.get("/bad1")
|
|
async def bad1(cmd: bytes):
|
|
endpoint = SSHCommandClientEndpoint.newConnection(
|
|
reactor,
|
|
cmd, # $ result=BAD getRemoteCommand=cmd
|
|
b"username",
|
|
b"ssh.example.com",
|
|
22,
|
|
password=b"password")
|
|
|
|
SSHCommandClientEndpoint.existingConnection(
|
|
endpoint,
|
|
cmd) # $ result=BAD getRemoteCommand=cmd
|
|
|
|
factory = Factory()
|
|
d = endpoint.connect(factory)
|
|
d.addCallback(lambda protocol: protocol.finished)
|
|
|
|
return {"success": "Dangerous"}
|