0xIronGoat / dirty-pipe
Implementation of Max Kellermann's exploit for CVE-2022-0847
☆9Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for dirty-pipe
- ☆16Updated 2 years ago
- Hash collisions and their exploitations☆9Updated 2 years ago
- Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution☆22Updated 2 years ago
- A Golang implementation of clubby789's implementation of CVE-2021-4034☆11Updated 2 years ago
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆14Updated last year
- LKM Linux rootkit☆20Updated last year
- pwncat windows c2 components☆17Updated 3 years ago
- Cryptanalysis of the DAO exploit & Multi-Stage Attack☆20Updated 7 months ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆21Updated 3 years ago
- Cisco CallManager User Enumeration☆15Updated 2 years ago
- ☆12Updated 11 months ago
- Scripts to help automate tedious red teaming enumeration and tasks.☆16Updated 4 years ago
- Active Directory Password Spray Testing Utility in Go☆14Updated 7 months ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated last year
- Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…☆13Updated 3 years ago
- A Burp extension to enable modification of FIX messages when relayed from MitM_Relay☆12Updated last year
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆12Updated 2 years ago
- All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps …☆23Updated 2 years ago
- Apache (Linux) CVE-2021-41773/2021-42013 Mass Vulnerability Checker☆22Updated 3 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆18Updated 4 years ago
- Nmap script to check vulnerability CVE-2021-21972☆28Updated 3 years ago
- ☆16Updated last year
- An evil RMI server that can launch an arbitrary command. May be useful for CVE-2021-44228☆12Updated 2 years ago
- Web based favicon recon tool made using streamlit.☆9Updated 2 years ago
- 3gsocks - a reverse connection socks5 based network pivot☆9Updated 3 years ago
- Exfiltrate data with DNS queries. Based on CertUtil and NSLookup.☆21Updated 10 months ago
- 📡 Ease file sharing during pentest/CTF 🎸☆12Updated 2 years ago