Share
## https://sploitus.com/exploit?id=B34F396F-DCCC-5BA0-85A6-D2D50BE04BAA
# Ghostcat Scanner - CVE-2020-1938
A powerful Python exploit tool for Apache Tomcat AJP Ghostcat vulnerability (CVE-2020-1938) with advanced features for penetration testing and security research.



## ๐ Overview
The Ghostcat vulnerability (CVE-2020-1938) allows attackers to read arbitrary files from web applications deployed on vulnerable Apache Tomcat servers via the AJP (Apache JServ Protocol) connector. This tool automates the exploitation process with support for:
- **Multi-target scanning** with threading
- **Custom wordlist support** for file enumeration
- **Upload point detection** to identify potential RCE vectors
- **JSP payload generation** for post-exploitation
- **Optimized performance** with configurable timeouts and threads
## ๐ฏ Affected Versions
- Apache Tomcat 9.0.0.M1 to 9.0.0.30
- Apache Tomcat 8.5.0 to 8.5.50
- Apache Tomcat 7.0.0 to 7.0.99
## ๐ Features
### Core Functionality
- โ
Arbitrary file read via AJP protocol exploitation
- โ
Fast multi-threaded scanning (50+ threads default)
- โ
Built-in wordlist with 25+ high-value targets
- โ
Custom wordlist support for comprehensive enumeration
- โ
Automatic result saving with organized output
- โ
Progress tracking with ETA and rate display
### Advanced Features
- โ
Upload point detection in Spring, Struts, and JSP applications
- โ
Configuration file parsing (web.xml, Spring, etc.)
- โ
JSP webshell payload generation
- โ
Multi-target batch processing
- โ
Verbose debugging mode
- โ
Graceful interrupt handling (Ctrl+C)
## ๐ Installation
### Requirements
- Python 3.6 or higher
- No external dependencies (uses only Python standard library)
### Quick Start
```bash
# Clone the repository
git clone https://github.com/yourusername/ghostcat-scanner.git
cd ghostcat-scanner
# Make executable
chmod +x ghostcat.py
# Run
python3 ghostcat.py -h