Add Python plugins for LangChain SSRF (CVE-2024-12822) and Flowise RC… #773
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
CVE-2025-58434) - Add LangChain SSRF CVE-2024-12822 detector with comprehensive tests - Add Flowise RCE CVE-2025-58434 detector with payload framework integration - Include full documentation and remediation guidance for both vulnerabilities - Follow Tsunami plugin development best practices and code style
This commit adds a comprehensive suite of professional security testing tools: 🎯 Interactive Exploit PoC (exploit_poc.py) - Interactive menu-driven exploitation framework - Automatic endpoint discovery - Multi-cloud metadata extraction (AWS/GCP/Azure) - Internal network port scanning - Proxy integration for traffic analysis - Full automation mode ☁️ Cloud Metadata Harvester (cloud_harvester.py) - Automated credential extraction from 5 cloud providers - AWS IAM credentials with IMDSv2 bypass attempts - GCP service account tokens - Azure managed identity tokens - Alibaba Cloud and DigitalOcean support - Export credentials in ready-to-use formats (AWS CLI, gcloud) - JSON output for reporting integration 🔬 Multi-Vector SSRF Tester (multi_vector_tester.py) - 15+ advanced bypass techniques - Timing-based blind SSRF detection - Protocol smuggling (Gopher, Dict, LDAP, etc.) - DNS exfiltration testing - URL parser confusion attacks - Network pivoting capabilities - Localhost variation testing 📊 Professional Report Generator (report_generator.py) - Executive-ready HTML reports with modern design - CVSS scoring and impact assessment - Detailed technical findings - Interactive PoC timeline - Comprehensive remediation recommendations - Print-friendly and responsive layout 🚀 Unified Suite (ssrf_suite.py) - Single entry point for all tools - Orchestrated attack chain automation - Interactive menu interface - End-to-end workflow from discovery to reporting 📚 Complete Documentation - TOOLS_README.md: Comprehensive toolkit guide - QUICKSTART.md: Quick reference and examples - demo.sh: Interactive demonstration script - requirements.txt: Python dependencies Key Features: ✅ Professional UX with color-coded output ✅ Complete cloud credential harvesting ✅ Advanced bypass techniques ✅ Blind SSRF detection ✅ DNS exfiltration ✅ Professional reporting ✅ Full automation support ✅ Proxy integration ✅ Multi-cloud support This toolkit provides security researchers and penetration testers with a complete, production-ready suite for CVE-2024-12822 assessment and exploitation in authorized testing scenarios. Total: 122KB of professional security tooling Tested on: Python 3.8+ Dependencies: requests, colorama
gcasaldi
commented
Dec 25, 2025
Author
There was a problem hiding this comment.
This contribution adds two Python-based Tsunami plugins targeting recently disclosed vulnerabilities affecting AI-driven application stacks:
a detector for LangChain SSRF (CVE-2024-12822), focused on identifying unsafe request routing patterns,
and a detector for Flowise RCE (CVE-2025-58434), implemented using payload-based validation aligned with Tsunami’s detection framework.
Both plugins include test coverage, documentation, and remediation guidance, and were developed following existing Tsunami plugin best practices and code style.
The goal is to extend Tsunami’s coverage to emerging AI/LLM-related attack surfaces without introducing invasive changes to the core framework.
Thank you for your time and review.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
…E (CVE-2025-58434)