Automate CVE exploit creation and CyberDefense protections: (results https://github.com/NoDataFound/PwnAI/tree/main/output)
Ask ChatGPT to print its own source
Screen.Recording.2022-12-06.at.4.17.45.PM.mov
Clone this repo
git clone https://github.com/NoDataFound/PwnAI.git
Install dependancies
python3 -m pip install -r requirements.txt
Review Input and Bulk Input samples
head -n 10 input/malware/malware_sample && head -n 10 input/sample_sources
# Exploit Title: TP-Link Tapo c200 1.1.15 - Remote Code Execution (RCE)
# Date: 02/11/2022
# Exploit Author: hacefresko
# Vendor Homepage: https://www.tp-link.com/en/home-networking/cloud-camera/tapo-c200/
# Version: 1.1.15 and below
# Tested on: 1.1.11, 1.1.14 and 1.1.15
# CVE : CVE-2021-4045
# Write up of the vulnerability: https://www.hacefresko.com/posts/tp-link-tapo-c200-unauthenticated-rce
https://github.com/rapid7/metasploit-payloads/blob/master/python/meterpreter/meterpreter.py
https://github.com/rapid7/metasploit-payloads/blob/master/powershell/MSF.Powershell/Meterpreter/Core.cs
Open Jupyter Notebook
Install Juypter Notebook if needed - use pip or download binaries here: https://jupyter.org/
pip3 install jupyter notebook
install (pictured) https://marketplace.visualstudio.com/items?itemName=ms-toolsai.jupyter-renderers
Configure .env with your OpenAI API key(notebook will help you)
set API key on launch
single searches
python3 PwnAI.py
Bulk searches
python3 PwnAI_bulk.py
