daffainfo
/
ai-exploits
mirror of https://github.com/daffainfo/ai-exploits.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Create README.md

main
Marcello 2024-01-25 11:12:28 -07:00 committed by GitHub
parent 7a93cc898a
commit 9bb71d03a1
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 26 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
triton/README.md Normal file
View File

@ -0,0 +1,26 @@
# NVIDIA Triton Vulnerabilities & Exploits
## Overview
Triton Inference Server is an open source inference serving software that streamlines AI inferencing. Triton enables teams to deploy any AI model from multiple deep learning and machine learning frameworks, including TensorRT, TensorFlow, PyTorch, ONNX, OpenVINO, Python, RAPIDS FIL, and more.
## Vulnerabilities
See this [blog](https://protectai.com/threat-research/triton-inference-server-arbitrary-file-overwrite) for a more in-depth technical description of the vulnerabilities.
### Metasploit Modules
- **triton_file_write**: Exploits a file overwrite vulnerability when Triton is started with the non-default ```--model-control explicit``` flag
- **triton_model_rce**: Allows you to obtain remote code execution on the server hosting Triton by (ab)using it's Python model backend when Triton is started with the non-default ```--model-control explicit``` flag
## Disclaimer
The vulnerabilities and associated exploits provided in this repository are for educational and ethical security testing purposes only.
## Contribution
Contributions to improve the exploits or documentation are welcome. Please follow the contributing guidelines outlined in the repository.
## License
All exploits and templates in this repository are released under the Apache 2.0 License.