34zY / Microsoft-Office-Word-MSHTML-Remote-Code-Execution-Exploit
CVE-2021-40444
☆64Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Microsoft-Office-Word-MSHTML-Remote-Code-Execution-Exploit
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆42Updated 2 years ago
- Helping to automate payload development, testing, Opsec checking, beacon tasking, and deployment for Cobalt Strike☆53Updated 2 years ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆108Updated 2 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆102Updated last year
- CVE-2022-24734 PoC☆48Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆141Updated 2 years ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆62Updated 2 years ago
- Windows Privilege Escalation☆43Updated 2 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆155Updated 3 years ago
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆135Updated last year
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆103Updated 2 years ago
- Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207☆109Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆39Updated 3 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆83Updated 3 years ago
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆126Updated 2 years ago
- 🚪 Quick & dirty Wordpress Command Execution Shell☆66Updated 2 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆133Updated 2 years ago
- Atlassian Bitbucket Data Center RCE(CVE-2022-26133) verification.☆147Updated 2 years ago
- MSSQL Database Attacker tool☆185Updated 2 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆31Updated 3 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆36Updated last year
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆110Updated 2 years ago
- Multi platform toolkit for an interactive DNS shell commands exfiltration, by using DNS-Cat you will be able to execute system commands i…☆109Updated 2 years ago
- PrintNightmare (CVE-2021-34527) PoC Exploit☆107Updated last year
- Webmin <=1.984, CVE-2022-0824 Post-Auth Reverse Shell PoC☆109Updated 2 years ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆163Updated 2 weeks ago
- Log4j2 CVE-2021-44228 revshell, ofc it suck!!☆19Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆79Updated 11 months ago