Skip to content
/ evilArc3 Public

A Python3 porting of evilArc, an historic tool to create ZIP which contains a file that could be able to exploit a zip slip vulnerability.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

davidenetti/evilArc3

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
evilArc3.py
evilArc3.py
 
 

Repository files navigation

evilArc3

A Python3 porting of evilArc, an historic tool to create ZIP which contains a file that could be able to exploit a zip slip vulnerability.

Usage

  • "-p / --path" Custom traversal path to prepend (e.g. "../../../../test")
  • "-t / --target" File to which the traversal path is applied
  • "-f / --output" Output archive name files... One or more files to include in the archive

Usage example

python3 evilArc3.py -p "../../../../../ -t test.sh -f malicious.zip file1 file2"

This will create a new ZIP file called "malicious.zip" which contains file1, file2 and the file ../../../../../test.sh.

About

A Python3 porting of evilArc, an historic tool to create ZIP which contains a file that could be able to exploit a zip slip vulnerability.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages