BishopFox / pwn-pulse
Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
☆136Updated 4 years ago
Related projects: ⓘ
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆171Updated 4 years ago
- Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.☆84Updated 2 years ago
- DEPRECATED - A wrapper around gobuster that automatically scans newly discovered directories.☆116Updated 3 years ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆155Updated 3 years ago
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆197Updated last year
- Domain user enumeration tool☆212Updated 10 months ago
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆79Updated 3 years ago
- Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.☆176Updated last year
- Changes for Visual Studio 2013☆112Updated 9 years ago
- ☆44Updated this week
- CVE-2018-9276 PRTG < 18.2.39 Authenticated Command Injection (Reverse Shell)☆36Updated 3 years ago
- CVE-2018-17246 - Kibana LFI < 6.4.3 & 5.6.13☆58Updated 4 years ago
- Exploit Development, backdooring PE, bypassing Anti-Virus (AV), assembly shellcoding☆137Updated 2 years ago
- ☆60Updated this week
- Repo with various Red Team scripts☆144Updated 3 years ago
- An Insider Threat Toolkit☆149Updated 5 years ago
- Username guessing tool primarily for use against the default Solaris finger service. Also supports relaying of queries through another fi…☆44Updated 9 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆200Updated 3 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆138Updated 3 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆90Updated 5 years ago
- ☆146Updated last year
- Proof of concept for CVE-2020-5902☆72Updated 4 years ago
- ☆50Updated 5 years ago
- ☆127Updated 6 years ago
- SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp☆132Updated 3 years ago
- Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution☆72Updated 3 years ago
- Handbook and survival guide for hacking over the wire, OSCP-style☆43Updated 3 years ago
- Public Exploits + Extra-curriculum for OSCE Exam Preparation☆77Updated 4 years ago
- ☆29Updated 2 years ago
- SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing☆91Updated 4 years ago