CVE-2024-32002

This repository contains a functional PoC for CVE-2024-32002, exploiting Git's symlink handling on case-insensitive filesystems to achieve RCE via malicious hooks during `git clone`. The exploit leverages submodules and crafted paths to write hooks into the `.git/` directory.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symlink manipulation to execute arbitrary commands during a recursive Git clone.

The repository claims to be a PoC for CVE-2024-32002 but only contains a README with no actual exploit code. It redirects users to external resources (another GitHub repo and a blog post) for details, which is a common tactic in suspicious repos.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, a Git vulnerability involving submodule symlink manipulation. The script demonstrates the vulnerability by creating a malicious Git repository with a symlink-based hook that executes arbitrary commands during a recursive clone.

This repository contains a functional exploit for CVE-2024-32002, a Git vulnerability that leverages case-insensitive filesystem handling and symbolic links in submodules to achieve remote code execution (RCE). The PoC script automates the creation of a malicious repository with a post-checkout hook that triggers a reverse shell upon cloning.

The repository contains no actual exploit code, only a clone command and a screenshot. It lacks technical details about the vulnerability and appears to be a placeholder or lure.

This PoC demonstrates CVE-2024-32002, a Git vulnerability allowing arbitrary code execution via malicious post-checkout hooks in submodules. The script automates the creation of a malicious repository with a symbolic link to trigger the hook during clone operations.

The repository contains functional exploit code for CVE-2017-1000117, a Git submodule command injection vulnerability, and CVE-2017-7269, an IIS 6.0 buffer overflow. The Metasploit module demonstrates the Git vulnerability by creating a malicious repository, while the Python script exploits the IIS buffer overflow to achieve remote code execution.

This repository demonstrates CVE-2024-32002, a Git vulnerability where a malicious submodule with a `post-checkout` hook can execute arbitrary commands during `git clone --recursive`. The PoC triggers the execution of Calculator on macOS via a crafted submodule.

This PoC exploits a Git vulnerability (CVE-2024-32002) by crafting a malicious Git repository with a post-checkout hook that executes arbitrary commands (e.g., launching Calculator) when cloned. It leverages Git submodules and symbolic links to trigger the hook execution.

This repository contains a functional exploit for CVE-2024-32002, leveraging Git submodules and symbolic links to execute arbitrary code (e.g., launching Calculator.app) during a git clone operation. The exploit manipulates Git hooks and index files to achieve remote code execution.

This repository contains a functional exploit for CVE-2024-32002, leveraging Git submodules and hooks to achieve remote code execution (RCE) on vulnerable Git versions (2.45.0). The exploit automates the creation of malicious repositories with crafted post-checkout hooks and symlinks to trigger arbitrary command execution during git clone operations.

This Bash script exploits CVE-2024-32002 by creating a malicious Git repository with a hidden post-checkout hook that executes arbitrary commands (e.g., launching Calculator) when cloned. The attack leverages Git submodules and symbolic links to conceal the malicious payload.

The repository contains a malicious Git hook that executes arbitrary commands (e.g., creating a file and displaying a message box) when cloned. It leverages Git submodules and symlinks to deceive users into executing the hook, which is a classic supply-chain attack vector.

The repository contains only a README.md file with minimal content, lacking any functional exploit code or technical details about CVE-2024-32002. It appears to be a placeholder or incomplete submission.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating Remote Code Execution (RCE) via a malicious Git submodule configuration. The exploit leverages case-insensitive filesystem handling on Windows and macOS to trick Git into writing files to unintended locations, specifically targeting the `.git` directory.

This repository demonstrates a Git submodule vulnerability (CVE-2024-32002) that achieves RCE by exploiting case-insensitive filesystem handling in Windows and macOS. The PoC uses a symlink and a malicious `.gitmodules` file to trigger arbitrary code execution during a recursive clone.

This repository contains only a README with a disclaimer and references to external resources for the exploit details. No actual exploit code or technical analysis is provided.

This PoC exploits CVE-2024-32002 by leveraging Git submodules and symlinks to execute a malicious post-checkout hook, achieving remote code execution via a PowerShell payload. The script automates repository setup, hook injection, and symlink creation to trigger the vulnerability.

The repository contains only a README file with minimal content, indicating it is a placeholder or submodule for an exploit without actual exploit code or technical details.

The repository contains only a README with minimal information, indicating it is a placeholder or superproject repo without actual exploit code or technical details.

The repository contains minimal placeholder code with no exploit functionality or technical details related to CVE-2024-32002. The README lacks vulnerability context, and the example.py file is a generic data processing script.

The repository contains only a minimal README with no technical details or exploit code. It appears to be a placeholder or stub with no substantive content related to CVE-2024-32002.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, demonstrating a Git submodule path injection vulnerability that allows arbitrary file write and remote code execution via malicious hooks. The PoC automates the setup of a vulnerable environment using Docker and reproduces the exploit chain.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symbolic link manipulation to execute arbitrary commands during a recursive Git clone.

This repository contains a functional PoC for CVE-2024-3202, exploiting a Git RCE vulnerability via crafted submodules and symlinks on case-insensitive filesystems. The exploit leverages malicious hooks executed during `git clone --recursive`.

The repository lacks actual exploit code and only provides a placeholder README with a git clone command. No technical details about CVE-2024-32002 are provided, and it promises a future blog analysis without delivering any substance.

The repository contains only a minimal README with a placeholder description for CVE-2024-32002, lacking any functional exploit code or technical details.

The repository claims to contain a PoC for CVE-2024-32002 (Git RCE via malicious hooks) but provides no actual exploit code, instead redirecting users to external sources ('git_rce repository or blog article'). The README lacks technical details and serves as a placeholder with vague references.

This repository contains a functional exploit for CVE-2024-32002, a Git vulnerability that allows arbitrary command execution via malicious hooks in submodules. The exploit leverages Git's handling of submodules and hooks to execute arbitrary commands (e.g., launching Calculator) when a victim clones a malicious repository.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symbolic link manipulation to execute arbitrary commands during a recursive Git clone.

This repository contains a functional PoC for CVE-2024-32002, a Git RCE vulnerability exploiting case-insensitive filesystem handling in submodules. The exploit uses a crafted submodule path and symlink to execute a malicious hook during repository cloning.

This repository contains a functional exploit for CVE-2024-32002, leveraging GitLab's gitlab-shell vulnerability to achieve remote code execution via malicious Git hooks and symlink manipulation. The script automates the creation of a malicious repository with a post-checkout hook and a symlinked submodule to trigger payload execution.

The repository lacks actual exploit code and provides vague instructions involving GitHub/GitLab repositories and recursive cloning, which is atypical for a legitimate PoC. No technical details about CVE-2024-32002 are provided.

This repository contains a functional exploit for CVE-2024-32002, demonstrating RCE via Git's submodule symlink handling on case-insensitive filesystems. The PoC uses crafted submodules and hooks to achieve arbitrary code execution during `git clone`.

The repository contains only a minimal README with no exploit code, technical details, or meaningful content related to CVE-2024-32002. It appears to be a placeholder or incomplete submission.

This repository references an exploit for CVE-2024-32002, a Git vulnerability, and directs users to an external blog for technical details. It does not contain exploit code but provides educational context and attribution.

This PoC demonstrates CVE-2024-32002 by exploiting Git's submodule and symlink handling to execute arbitrary code via a malicious post-checkout hook. The script creates a crafted repository structure that triggers the hook during a recursive clone, leading to code execution (e.g., launching Calculator).

This repository contains a functional exploit for CVE-2024-32002, leveraging case-insensitive filesystem handling in Git to execute arbitrary code via malicious hooks during a `git clone` operation. The PoC includes a script to create a malicious repository with a submodule containing a symlink to a `.git/` directory with a malicious hook.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating an arbitrary write vulnerability in Git by exploiting case sensitivity in symlinks and submodule paths to write files into the .git directory.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating an arbitrary write vulnerability in Git by exploiting case sensitivity in symlinks and submodule paths to write files into the .git directory. The PoC leverages a symlink and a malicious .gitmodules file to achieve this effect during a recursive clone.

This repository is a submodule used to demonstrate CVE-2024-32002 by detecting arbitrary writes into the .git directory. It contains a placeholder file ('Problems') to indicate successful exploitation but lacks functional exploit code.

This repository is a submodule designed to demonstrate CVE-2024-32002 by detecting arbitrary writes into the .git directory. It contains a placeholder file ('Problems') to indicate successful exploitation but lacks functional exploit code.

This repository demonstrates CVE-2024-32002 by exploiting a malicious Git hook (`post-checkout`) to achieve Remote Code Execution (RCE) upon cloning. The hook executes arbitrary commands (e.g., launching `calc`) on Windows or macOS systems.

This repository demonstrates CVE-2024-32002 by exploiting Git's submodule feature to execute a malicious `post-checkout` hook, achieving RCE by popping a calculator on Windows or macOS. The hook is strategically placed in a non-existent directory to ensure execution upon clone.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, which leverages case-insensitive filesystem handling in Git to achieve remote code execution via malicious submodule hooks. The exploit uses a symlink to trick Git into executing a post-checkout hook in an unintended directory.

The repository contains only a minimal README with no exploit code, technical details, or functional PoC. It is a placeholder with no substantive content.

The repository contains only a minimal README with a title and CVE reference, lacking any functional exploit code or technical details. It appears to be a placeholder or incomplete submission.

The repository contains only a README with a single image link and no technical details or exploit code. This is indicative of a social engineering lure rather than a legitimate PoC.

The repository contains minimal placeholder files for a Platform.sh deployment but lacks any functional exploit code or technical details about CVE-2024-32002. The README is vague and does not provide meaningful context.

The repository contains only a minimal README with no technical details, exploit code, or meaningful content related to CVE-2024-32002.

The repository contains only a README.md file with minimal content, lacking any functional exploit code or technical details about CVE-2024-32002. It appears to be a placeholder without substantive information.

The repository contains only a README.md file with no content or exploit code. It lacks any technical details or functional proof-of-concept.

The repository contains only a README.md file with minimal content, providing no functional exploit code or technical details about CVE-2024-32002.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating arbitrary command execution via a malicious Git submodule hook. The exploit leverages a post-checkout hook to execute a command (opening Calculator on macOS) when the submodule is checked out.