code_execution

Overview

This directory houses sinks for code execution in Python. This includes the execution of both Python code and shell commands (both on the local machine, and remotely via protocols like SSH).

Future Work

Below is a list of libraries with known code execution sinks, for which we still need to write exploit demos.

SSH Libraries

Stub exploits for these libraries can be found in ssh_command_execution.py

Templating Libraries

Stub exploits for these libraries can be found in server_side_template_code_execution.py

Name	Name	Last commit message	Last commit date
parent directory ..
pycon_presentation	pycon_presentation
tests	tests
PyCon - Unexpected Execution- Wild Ways Remote Code Execution can Occur on Python Servers.pdf	PyCon - Unexpected Execution- Wild Ways Remote Code Execution can Occur on Python Servers.pdf
README.md	README.md
__init__.py	__init__.py
execution_base.py	execution_base.py
filesystem_python_code_execution.py	filesystem_python_code_execution.py
python_code_execution.py	python_code_execution.py
server_side_template_code_execution.py	server_side_template_code_execution.py
shell_command_execution.py	shell_command_execution.py
ssh_command_execution.py	ssh_command_execution.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Expand file tree

README.md

Overview

Future Work

SSH Libraries

Templating Libraries

Search code, repositories, users, issues, pull requests...

FilesExpand file tree

code_execution

Directory actions

More options

Directory actions

More options

Latest commit

History

code_execution

Folders and files

parent directory

README.md

Overview

Future Work

SSH Libraries

Templating Libraries

Expand file tree