Fortiscan

(CVE-2018-13379) (FG-IR-18-384) Exploitation Tool, You can use this tool to check the vulnerability in your FortiGate SSL-VPN.

This vulnerability affects the following versions:

• FortiOS 6.0 - 6.0.0 to 6.0.4 • FortiOS 5.6 - 5.6.3 to 5.6.7 • FortiOS 5.4 - 5.4.6 to 5.4.12

Important Update 0.7

• Grab cleartext credentials with serial number of Fortinet device.
• Extremely Fast

Usage v 0.6 File List

./fortiscan ip.txt

Usage v 0.5 (One Liner to Initiate the Scan : Host|IP:Port(443 or 10443 or 8443)

./fortiscan 192.168.1.1:10443

Requirements

Tested with Parrot & Debian Operating Systems and Windows 10

Compiled version Linux & windows

GitHub: