0xedh/mstsc-path-traversal

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xedh/mstsc-path-traversal)

0xedh / mstsc-path-traversal

mstsc.exe Path Traversal to RCE POC

☆91

Alternatives and similar repositories for mstsc-path-traversal

Users that are interested in mstsc-path-traversal are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

360-Linton-Lab / Telemetry
View on GitHub
WINDOWS TELEMETRY权限维持
☆258Jul 2, 2020Updated 5 years ago
Lexus89 / SharpPack
View on GitHub
A collection of C# tools for various purposes (kerberoasting, tickets, mimikatz, privesc, domain enumeration and more)
☆80Aug 12, 2019Updated 6 years ago
qianshuidewajueji / CVE-2019-0887
View on GitHub
☆11Jul 19, 2020Updated 5 years ago
uknowsec / loginlog_windows
View on GitHub
读取登录过本机的登录失败或登录成功的所有计算机信息，在内网渗透中快速定位运维管理人员。
☆221Sep 30, 2019Updated 6 years ago
dev-2null / ADIDNSRecords
View on GitHub
Alternative C# Implementation tool to retrieve Active Directory Integrated DNS records with IP addresses
☆50Aug 8, 2020Updated 5 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
rootclay / NTLM-SSP
View on GitHub
本项目是一篇NTLM中高级进阶进阶文章，后续我也会在Github和Gitbook对此文进行持续性的更新NTLM以及常见的协议中高级进阶并计划开源部分协议调试工具，望各位issue勘误。
☆113Jul 10, 2020Updated 5 years ago
jas502n / fastjson-1.2.60-rce
View on GitHub
autoType enable
☆36Sep 21, 2019Updated 6 years ago
Ridter / GhostPotato
View on GitHub
Just pick out the code we need.
☆65Nov 22, 2019Updated 6 years ago
ttttmr / php-fpm
View on GitHub
用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell
☆41May 6, 2021Updated 4 years ago
Green-m / dark-shell
View on GitHub
Shell say no to NIDS
☆72Nov 7, 2019Updated 6 years ago
Ridter / SharpAddDomainMachine
View on GitHub
SharpAddDomainMachine
☆69Oct 12, 2021Updated 4 years ago
WBGlIl / IIS_backdoor
View on GitHub
backdoor
☆263Jul 26, 2025Updated 8 months ago
evi1ox / MSSQL_BackDoor
View on GitHub
☆159Aug 4, 2020Updated 5 years ago
QAX-A-Team / dcpwn
View on GitHub
an impacket-dependent script exploiting CVE-2019-1040
☆72Jan 1, 2021Updated 5 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
cbwang505 / CVE-2020-1066-EXP
View on GitHub
CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统
☆187Jun 17, 2020Updated 5 years ago
uknowsec / SharpToolsAggressor
View on GitHub
内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
☆499Feb 13, 2020Updated 6 years ago
Artemis1029 / Java_xmlhack
View on GitHub
帮助java环境下任意文件下载情况自动化读取源码的小工具
☆166Apr 5, 2019Updated 6 years ago
uknowsec / SharpSQLDump
View on GitHub
内网渗透中快速获取数据库所有库名，表名，列名。具体判断后再去翻数据，节省时间。适用于mysql，mssql。
☆198Nov 11, 2019Updated 6 years ago
tobechenghuai / Shiro_721_Padding_Oracle_RCE
View on GitHub
Shiro_721 exp 纯手工实现Padding Oracle整个过程
☆67Nov 20, 2019Updated 6 years ago
ze0r / cve-2019-0808-poc
View on GitHub
cve-2019-0808-poc
☆48Mar 25, 2019Updated 7 years ago
hl0rey / Web_ExternalC2_Demo
View on GitHub
Web ExternalC2 Demo
☆52Aug 18, 2020Updated 5 years ago
TarlogicSecurity / mod_ringbuilder
View on GitHub
Apache Module Backdoor (PoC)
☆48May 22, 2019Updated 6 years ago
uknowsec / Frida-Hook-In-Java-Notes
View on GitHub
Java层frida hook学习笔记 https://uknowsec.cn
☆47Feb 6, 2020Updated 6 years ago
Wordpress hosting with auto-scaling on Cloudways • Ad
Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
fnmsd / ChunkedHTTPAdapter
View on GitHub
参考《利用分块传输吊打所有WAF》修改的requests的Adapter
☆98Jan 31, 2019Updated 7 years ago
RcoIl / CSharp-Tools
View on GitHub
.NET C# Tools
☆333Jan 19, 2021Updated 5 years ago
bao7uo / HexyRunner
View on GitHub
Takes raw hex shellcode (e.g. msfvenom hex format) from a cmd line arg, text file, or URL download and runs it.
☆20Dec 17, 2018Updated 7 years ago
Tycx2ry / SweetPotato_CS
View on GitHub
修改的SweetPotato，使之可以用于CobaltStrike v4.0
☆246Apr 30, 2020Updated 5 years ago
zcgonvh / CVE-2020-17144
View on GitHub
weaponized tool for CVE-2020-17144
☆158Dec 9, 2020Updated 5 years ago
Ridter / get_ip_by_ico
View on GitHub
从shodan获取使用了相同favicon.ico的网站
☆189Feb 16, 2019Updated 7 years ago
0x09AL / RdpThief
View on GitHub
Extracting Clear Text Passwords from mstsc.exe using API Hooking.
☆1,432Jul 20, 2024Updated last year
hayasec / reGeorg-Weblogic
View on GitHub
reGeorg的特殊版本，适用于老版本weblogic。
☆151Apr 30, 2020Updated 5 years ago
iSafeBlue / fastjson-autotype-bypass-demo
View on GitHub
fastjson 1.2.68 版本 autotype bypass
☆142Jun 17, 2022Updated 3 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
7dog7 / flash-hijack
View on GitHub
flash 劫持轮子，CSRF，劫持，跳转，swf 有需求可以提issues ，src挖掘,劫持response
☆86Nov 9, 2019Updated 6 years ago
dpu / coremail-address-book
View on GitHub
📧Coremail邮件系统组织通讯录导出脚本
☆158Sep 28, 2021Updated 4 years ago
coolboy4me / cve-2019-0708_bluekeep_rce
View on GitHub
it works on xp (all version sp2 sp3)
☆75Sep 30, 2019Updated 6 years ago
QAX-A-Team / getpass
View on GitHub
a mini tool to dump password and NTLM hash from WDigest & MSV1_0 & tspkg, as a result of study of mimikatz
☆83Sep 27, 2018Updated 7 years ago
hmoytx / RdpThief_tools
View on GitHub
窃取mstsc中的用户明文凭据
☆47Apr 23, 2021Updated 4 years ago
Mel0day / RedTeam-BCS
View on GitHub
BCS（北京网络安全大会）2019 红队行动会议重点内容
☆819Sep 4, 2019Updated 6 years ago
mindspoof / MSSQL-Fileless-Rootkit-WarSQLKit
View on GitHub
WarSQLKit is a fileless rootkit and attack tool I developed for MS-SQL. With this tool you can rootkit the SQL service that uses CLR on M…
☆263Dec 19, 2023Updated 2 years ago