Skip to content
/ fortiscan Public

A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.

cve.bousselham.com
160 stars 34 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

anasbousselham/fortiscan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
scan
scan
 
 
screenshoot
screenshoot
 
 
README.md
README.md
 
 
fortiscan.go
fortiscan.go
 
 
fortiscan_v0.5.go
fortiscan_v0.5.go
 
 

Repository files navigation

Fortiscan

(CVE-2018-13379) (FG-IR-18-384) Exploitation Tool, You can use this tool to check the vulnerability in your FortiGate SSL-VPN.

This vulnerability affects the following versions:

• FortiOS 6.0 - 6.0.0 to 6.0.4 • FortiOS 5.6 - 5.6.3 to 5.6.7 • FortiOS 5.4 - 5.4.6 to 5.4.12

https://www.fortinet.com/blog/business-and-technology/fortios-ssl-vulnerability

Test Image 3

Test Image 1

Test Image 2

Important Update 0.7

  • Grab cleartext credentials with serial number of Fortinet device.
  • Extremely Fast

Usage v 0.6 File List

./fortiscan ip.txt

Usage v 0.5 (One Liner to Initiate the Scan : Host|IP:Port(443 or 10443 or 8443)

./fortiscan 192.168.1.1:10443

Requirements

Tested with Parrot & Debian Operating Systems and Windows 10

Compiled version Linux & windows

https://github.com/anasbousselham/fortiscan/releases

About

A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.

cve.bousselham.com

Topics

golang vulnerability fortigate fortinet ssl-vpn fg-ir-18-384

Resources

Readme
Activity

Stars

160 stars

Watchers

8 watching

Forks

34 forks
Report repository

Releases 1

0.7 Latest
Dec 4, 2020

Packages

No packages published

Languages