CVE-2024-32002

This repository contains a functional PoC for CVE-2024-32002, exploiting Git's symlink handling on case-insensitive filesystems to achieve RCE via malicious hooks during `git clone`. The exploit leverages submodules and crafted paths to write hooks into the `.git/` directory.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symlink manipulation to execute arbitrary commands during a recursive Git clone.

The repository claims to be a PoC for CVE-2024-32002 but only contains a README with no actual exploit code. It redirects users to external resources (another GitHub repo and a blog post) for details, which is a common tactic in suspicious repos.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, a Git vulnerability involving submodule symlink manipulation. The script demonstrates the vulnerability by creating a malicious Git repository with a symlink-based hook that executes arbitrary commands during a recursive clone.

This repository contains a functional exploit for CVE-2024-32002, a Git vulnerability that leverages case-insensitive filesystem handling and symbolic links in submodules to achieve remote code execution (RCE). The PoC script automates the creation of a malicious repository with a post-checkout hook that triggers a reverse shell upon cloning.

The repository contains no actual exploit code, only a clone command and a screenshot. It lacks technical details about the vulnerability and appears to be a placeholder or lure.

This repository demonstrates CVE-2024-32002, a Git vulnerability where a malicious submodule with a `post-checkout` hook can execute arbitrary commands during `git clone --recursive`. The PoC triggers the execution of Calculator on macOS via a crafted submodule.

This repository contains a functional exploit for CVE-2024-32002, leveraging Git submodules and symbolic links to execute arbitrary code (e.g., launching Calculator.app) during a git clone operation. The exploit manipulates Git hooks and index files to achieve remote code execution.

This PoC exploits a Git vulnerability (CVE-2024-32002) by crafting a malicious Git repository with a post-checkout hook that executes arbitrary commands (e.g., launching Calculator) when cloned. It leverages Git submodules and symbolic links to trigger the hook execution.

The repository contains functional exploit code for CVE-2017-1000117, a Git submodule command injection vulnerability, and CVE-2017-7269, an IIS 6.0 buffer overflow. The Metasploit module demonstrates the Git vulnerability by creating a malicious repository, while the Python script exploits the IIS buffer overflow to achieve remote code execution.

This PoC demonstrates CVE-2024-32002, a Git vulnerability allowing arbitrary code execution via malicious post-checkout hooks in submodules. The script automates the creation of a malicious repository with a symbolic link to trigger the hook during clone operations.

This repository contains a functional exploit for CVE-2024-32002, leveraging Git submodules and hooks to achieve remote code execution (RCE) on vulnerable Git versions (2.45.0). The exploit automates the creation of malicious repositories with crafted post-checkout hooks and symlinks to trigger arbitrary command execution during git clone operations.

This Bash script exploits CVE-2024-32002 by creating a malicious Git repository with a hidden post-checkout hook that executes arbitrary commands (e.g., launching Calculator) when cloned. The attack leverages Git submodules and symbolic links to conceal the malicious payload.

This repository demonstrates a Git submodule vulnerability (CVE-2024-32002) that achieves RCE by exploiting case-insensitive filesystem handling in Windows and macOS. The PoC uses a symlink and a malicious `.gitmodules` file to trigger arbitrary code execution during a recursive clone.

The repository contains only a README.md file with minimal content, lacking any functional exploit code or technical details about CVE-2024-32002. It appears to be a placeholder or incomplete submission.

The repository contains a malicious Git hook that executes arbitrary commands (e.g., creating a file and displaying a message box) when cloned. It leverages Git submodules and symlinks to deceive users into executing the hook, which is a classic supply-chain attack vector.

The repository contains only a minimal README with no technical details, exploit code, or meaningful content related to CVE-2024-32002.

The repository contains minimal placeholder files for a Platform.sh deployment but lacks any functional exploit code or technical details about CVE-2024-32002. The README is vague and does not provide meaningful context.

The repository contains only a minimal README with no exploit code, technical details, or meaningful content related to CVE-2024-32002. It appears to be a placeholder or incomplete submission.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating an arbitrary write vulnerability in Git by exploiting case sensitivity in symlinks and submodule paths to write files into the .git directory. The PoC leverages a symlink and a malicious .gitmodules file to achieve this effect during a recursive clone.

The repository contains only a minimal README with no exploit code, technical details, or functional PoC. It is a placeholder with no substantive content.

The repository contains only a minimal README with a title and CVE reference, lacking any functional exploit code or technical details. It appears to be a placeholder or incomplete submission.

The repository contains only a README.md file with no content or exploit code. It lacks any technical details or functional proof-of-concept.

The repository contains only a README with a single image link and no technical details or exploit code. This is indicative of a social engineering lure rather than a legitimate PoC.

This repository is a submodule designed to demonstrate CVE-2024-32002 by detecting arbitrary writes into the .git directory. It contains a placeholder file ('Problems') to indicate successful exploitation but lacks functional exploit code.

The repository lacks actual exploit code and provides vague instructions involving GitHub/GitLab repositories and recursive cloning, which is atypical for a legitimate PoC. No technical details about CVE-2024-32002 are provided.

This PoC exploits CVE-2024-32002 by leveraging Git submodules and symlinks to execute a malicious post-checkout hook, achieving remote code execution via a PowerShell payload. The script automates repository setup, hook injection, and symlink creation to trigger the vulnerability.

This repository contains a functional proof-of-concept for CVE-2024-32002, demonstrating arbitrary command execution via a malicious Git submodule hook. The exploit leverages a post-checkout hook to execute a command (opening Calculator on macOS) when the submodule is checked out.

This repository demonstrates CVE-2024-32002 by exploiting Git's submodule feature to execute a malicious `post-checkout` hook, achieving RCE by popping a calculator on Windows or macOS. The hook is strategically placed in a non-existent directory to ensure execution upon clone.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, which leverages case-insensitive filesystem handling in Git to achieve remote code execution via malicious submodule hooks. The exploit uses a symlink to trick Git into executing a post-checkout hook in an unintended directory.

This repository contains a functional exploit for CVE-2024-32002, leveraging case-insensitive filesystem handling in Git to execute arbitrary code via malicious hooks during a `git clone` operation. The PoC includes a script to create a malicious repository with a submodule containing a symlink to a `.git/` directory with a malicious hook.

This PoC demonstrates CVE-2024-32002 by exploiting Git's submodule and symlink handling to execute arbitrary code via a malicious post-checkout hook. The script creates a crafted repository structure that triggers the hook during a recursive clone, leading to code execution (e.g., launching Calculator).

The repository claims to contain a PoC for CVE-2024-32002 (Git RCE via malicious hooks) but provides no actual exploit code, instead redirecting users to external sources ('git_rce repository or blog article'). The README lacks technical details and serves as a placeholder with vague references.

This repository contains a functional exploit for CVE-2024-32002, leveraging GitLab's gitlab-shell vulnerability to achieve remote code execution via malicious Git hooks and symlink manipulation. The script automates the creation of a malicious repository with a post-checkout hook and a symlinked submodule to trigger payload execution.

This repository contains a functional exploit for CVE-2024-32002, a Git vulnerability that allows arbitrary command execution via malicious hooks in submodules. The exploit leverages Git's handling of submodules and hooks to execute arbitrary commands (e.g., launching Calculator) when a victim clones a malicious repository.

This repository contains a functional PoC for CVE-2024-32002, a Git RCE vulnerability exploiting case-insensitive filesystem handling in submodules. The exploit uses a crafted submodule path and symlink to execute a malicious hook during repository cloning.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symbolic link manipulation to execute arbitrary commands during a recursive Git clone.

This repository contains a functional PoC for CVE-2024-3202, exploiting a Git RCE vulnerability via crafted submodules and symlinks on case-insensitive filesystems. The exploit leverages malicious hooks executed during `git clone --recursive`.

This repository contains a functional PoC for CVE-2024-32002, demonstrating an RCE vulnerability in Git submodules. The exploit leverages a malicious post-checkout hook and symbolic link manipulation to execute arbitrary commands during a recursive Git clone.

This repository contains a functional proof-of-concept exploit for CVE-2024-32002, demonstrating a Git submodule path injection vulnerability that allows arbitrary file write and remote code execution via malicious hooks. The PoC automates the setup of a vulnerable environment using Docker and reproduces the exploit chain.

The repository lacks actual exploit code and only provides a placeholder README with a git clone command. No technical details about CVE-2024-32002 are provided, and it promises a future blog analysis without delivering any substance.

The repository contains minimal placeholder code with no exploit functionality or technical details related to CVE-2024-32002. The README lacks vulnerability context, and the example.py file is a generic data processing script.

The repository contains only a README.md file with minimal content, providing no functional exploit code or technical details about CVE-2024-32002.

This repository contains a functional exploit for CVE-2024-32002, demonstrating RCE via Git's submodule symlink handling on case-insensitive filesystems. The PoC uses crafted submodules and hooks to achieve arbitrary code execution during `git clone`.

The repository contains only a README file with minimal content, indicating it is a placeholder or submodule for an exploit without actual exploit code or technical details.

The repository contains only a minimal README with no technical details or exploit code. It appears to be a placeholder or stub with no substantive content related to CVE-2024-32002.

The repository contains only a README with minimal information, indicating it is a placeholder or superproject repo without actual exploit code or technical details.

This repository references an exploit for CVE-2024-32002, a Git vulnerability, and directs users to an external blog for technical details. It does not contain exploit code but provides educational context and attribution.

The repository contains only a README.md file with minimal content, lacking any functional exploit code or technical details about CVE-2024-32002. It appears to be a placeholder without substantive information.

The repository contains only a minimal README with a placeholder description for CVE-2024-32002, lacking any functional exploit code or technical details.