Exploiters

The Infection Monkey uses various remote code execution (RCE) exploiters. To our best knowledge, most of these pose no risk to performance or services on victim machines. This documentation serves as a quick introduction to the exploiters currently implemented and the vulnerabilities they use:

• Log4Shell
• PowerShell
• Zerologon
• WMIexec
• SSHexec
• SMBexec
• MsSQL
• Hadoop