FourCoreLabs / spring4shell-exploit-poc
Exploit a vulnerable Spring application with the Spring4Shell (CVE-2022-22965) Vulnerability.
☆43Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for spring4shell-exploit-poc
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- Enumerate AWS permissions and resources.☆64Updated 2 years ago
- ☆41Updated 2 years ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆57Updated 2 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆62Updated 3 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- ☆26Updated 2 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- An Ansible role for installing Cobalt Strike.☆74Updated 3 months ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆68Updated 3 years ago
- Simple AV Evasion for PE Files☆41Updated 3 years ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆60Updated 2 months ago
- This repo will contain some basic pentest/RT commands.☆36Updated 2 years ago
- Azure pentesting reference for Altered Security Lab☆24Updated 2 years ago
- ☆38Updated 2 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆84Updated last year
- ☆46Updated 2 years ago
- ☆118Updated last year
- autocrack adds queue support for hashcat cracking.☆42Updated last year
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Super organized and flexible script for sending phishing campaigns☆54Updated 2 years ago
- ☆68Updated last year
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆37Updated 2 years ago
- blame Huy☆42Updated 3 years ago
- Analyzing AD domains for security risks related to user accounts☆63Updated 2 years ago