Analysis updated 2026-07-06 · repo last pushed 2024-09-28
Run the fake printer server on your network to check if computers are vulnerable to CVE-2024-47177.
Use it during a penetration test to demonstrate the printer flaw to a client.
Verify that a recent security patch protects against malicious printer impersonation.
| vulhub/evil-ipp-server | captaingrock/krea2trainer | codenamekt/hexus | |
|---|---|---|---|
| Stars | 7 | 7 | 7 |
| Language | Python | Python | Python |
| Last pushed | 2024-09-28 | — | — |
| Maintenance | Stale | — | — |
| Setup difficulty | easy | hard | moderate |
| Complexity | 2/5 | 4/5 | 3/5 |
| Audience | ops devops | designer | developer |
Figures from each repo's GitHub metadata at analysis time.
Requires Python and knowledge of your own IP address plus the target system's IP address.
This project is a tool designed to demonstrate a security vulnerability known as CVE-2024-47177. In everyday terms, it sets up a fake printer server that acts maliciously to exploit a flaw in how certain systems handle network printers. The main benefit is for security teams who need to safely test whether their systems can be tricked by a bad actor pretending to be a legitimate printer. At a high level, the tool works by impersonating an IPP (Internet Printing Protocol) server. IPP is a standard language computers and printers use to talk to each other over a network. When a computer or a printing service reaches out to find printers on a network, this fake server responds. Because of the underlying security flaw in the target system, the target trusts this response and can be manipulated, allowing the person running the test to prove the vulnerability exists. The people who would use this are security researchers, IT administrators, and penetration testers. For example, if an IT manager wants to know if their company's computers are vulnerable to this specific printer flaw, they could run this tool on their network. If the fake server successfully interacts with their computers in a malicious way, the IT team knows they need to apply security updates to fix the issue. To use it, someone runs a simple command that tells the script its own address and the address of the computer they want to test. The project is written in Python and is intentionally straightforward. Beyond the basic command to run it, the documentation directs readers to an external web page for the full technical background and details on the vulnerability itself.
A fake printer server that exploits CVE-2024-47177 to test if systems trust malicious network printers. Security teams run it to prove their computers need a security patch.
Mainly Python. The stack also includes Python, IPP.
Stale — no commits in 1-2 years (last push 2024-09-28).
No license information is provided in the repository.
Setup difficulty is rated easy, with roughly 5min to a first successful run.
Mainly ops devops.
This repo across BitVibe Labs
Verify against the repo before relying on details.