Share
## https://sploitus.com/exploit?id=DD4A8B1A-87B1-5EAA-BD43-AF43B0541934
# ScreenConnect CVE-2024-1709 Exploit Tool

A Python tool to check for and exploit the authentication bypass (CVE-2024-1708) and resulting remote code execution (CVE-2024-1709) vulnerabilities in ConnectWise ScreenConnect (ConnectWise Control).

## Description

This tool performs two main functions:
1.  **Check Mode:** Tests a target ConnectWise ScreenConnect server for the authentication bypass vulnerability (CVE-2024-1708).
2.  **Exploit Mode:** Attempts to exploit the vulnerability chain, provides reconnaissance on accessible endpoints, and guides manual exploitation, particularly for targets in the initial setup phase.

## Features

-   **Vulnerability Checking:** Quickly determines if a target is vulnerable.
-   **Admin Endpoint Discovery:** Automatically searches for accessible administrative panels after a successful auth bypass.
-   **Setup Mode Detection:** Identifies targets that are in the initial setup state, allowing for manual admin account creation.
-   **Clear Reporting:** Provides clear, color-coded output on the target's status.

## Usage

### Prerequisites

-   Python 3.x
-   The `requests` library.

Install the required library:
```bash
pip install requests