FortiGate API Dump Exploit – (v7.2 & Below)
- Features:
- auto-dumper for over 170+ FortiGate API endpoints
-Supports vulnerable FortiOS 7.2 and all lower (6.x, 5.x)
-Extracts firewall policy, VPN sessions, certs, local users, SSL portals, config backups, SNMP keys, DNS/HA/NTP info ( it can get +170 config file from target
- Multithreaded scanning (20+ threads, bulk IP support)
- Auto folder dump with .json and .conf structured outputs
- Stealthy headers (Forwarded + Report Runner)
* Targets:
FortiGate firewalls with exposed API (default ports 443, 10443)
Misconfigured VPN/SSL portals
* Impact:
- Gain full network layout, admin creds usernames ( password ENC ), SAML/RADIUS/LDAP, live VPN tokens
Steal .conf with device backups (plaintext )
Pivot internally via user tokens + IPsec/VPN session IDs
- Tested On:
FortiOS v6.0.9, 6.2.5, 7.0.4, 7.2.1, 7.2.6, 6.2.x And more versions ...
- no request for user,pass , only ip:port
-total files can be Dumped: +150
Price: 12k $
Time wasters blocked
DEAL WITH ESCROW
some samples :
https://limewire.com/d/YRdpm#iPkNsBrh5C
Contact only if you will buy
Don't waste my time
Tox: A6612D86CE899FE829901454BDFA5684D5865468C4A826C7462791B327CA623BE604620379DF
Session:
050703f6dfb92285446258528b0cc3127d49a6de9f9d1ecb996e4b27bb6b41d751
Any questions..?
- Features:
- auto-dumper for over 170+ FortiGate API endpoints
-Supports vulnerable FortiOS 7.2 and all lower (6.x, 5.x)
-Extracts firewall policy, VPN sessions, certs, local users, SSL portals, config backups, SNMP keys, DNS/HA/NTP info ( it can get +170 config file from target
- Multithreaded scanning (20+ threads, bulk IP support)
- Auto folder dump with .json and .conf structured outputs
- Stealthy headers (Forwarded + Report Runner)
* Targets:
FortiGate firewalls with exposed API (default ports 443, 10443)
Misconfigured VPN/SSL portals
* Impact:
- Gain full network layout, admin creds usernames ( password ENC ), SAML/RADIUS/LDAP, live VPN tokens
Steal .conf with device backups (plaintext )
Pivot internally via user tokens + IPsec/VPN session IDs
- Tested On:
FortiOS v6.0.9, 6.2.5, 7.0.4, 7.2.1, 7.2.6, 6.2.x And more versions ...
- no request for user,pass , only ip:port
-total files can be Dumped: +150
Price: 12k $
Time wasters blocked
DEAL WITH ESCROW
some samples :
https://limewire.com/d/YRdpm#iPkNsBrh5C
Contact only if you will buy
Don't waste my time
Tox: A6612D86CE899FE829901454BDFA5684D5865468C4A826C7462791B327CA623BE604620379DF
Session:
050703f6dfb92285446258528b0cc3127d49a6de9f9d1ecb996e4b27bb6b41d751
Any questions..?