Skip to content
/ zaber Public

🕵️ Yet another CVE-2019-9670 exploit, but in Golang.

www.zimbra.com/

License

MIT license
4 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

oppsec/zaber

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
assets
assets
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

🕵️ Zaber

Yet another CVE-2019-9670 exploit, but in Golang



🕵️ What is Zaber?

🕵️ Zaber is a Golang tool created to exploit the vulnerability defined as CVE-2019-9670 (XXE in Zimbra Collaboration 8.7.X < 8.7.11p10)


⚡ Installing / Getting started

A quick guide of how to install and use Zaber.

1. go install github.com/oppsec/zaber
2. zaber -u https://example.com

You can use go install github.com/oppsec/zaber@latest to update the tool



⚙️ Pre-requisites

  • Golang installed on your machine.



✨ Features

  • Extremely fast
  • Low RAM and CPU usage
  • Made in Go



🔨 Contributing

A quick guide of how to contribute with the project.

1. Create a fork from Zaber repository.
2. Download the project with git clone https://github.com/your/zaber.git
3. cd zaber/
4. Make your changes.
5. Commit and make a git push.
6. Open a pull request.



⚠️ Warning

  • The developer is not responsible for any malicious use of this tool.

About

🕵️ Yet another CVE-2019-9670 exploit, but in Golang.

www.zimbra.com/

Topics

go golang exploit vulnerability cve zimbra blueteam redteam cve-2019-9670

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

3 tags

Languages