Skip to content

Splinter0/tensorflow-rce

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
dector.py
dector.py
 
 
exploit.py
exploit.py
 
 
inject.py
inject.py
 
 
model.py
model.py
 
 

Repository files navigation

Tersorflow Remote Code Execution with Malicious Model

Repository for the scripts presented in the blogpost: https://mastersplinter.work/research/tensorflow-rce/

Files

  • exploit.py: used to create a simple malicious model with a reverse shell
  • inject.py: injects the malicious layer in a legitimate model
  • model.py: simulate the usage of load_mode on a malicious model
  • detector.py: detects a malicious Lambda in a .h5 model

Disclaimer

The contents of this repository are exclusively for research and entertainment purposes.

About

RCE PoC for Tensorflow using a malicious Lambda layer

mastersplinter.work/research/tensorflow-rce/

Topics

security machine-learning exploit tensorflow rce

Resources

Readme

License

MIT license
Activity

Stars

60 stars

Watchers

3 watching

Forks

8 forks
Report repository

Languages