Alternatives and similar repositories for TomcatBackdoorPoC

Users that are interested in TomcatBackdoorPoC are comparing it to the libraries listed below

• PetrusViet / CVE-2023-38743
  ManageEngine ADManager Command Injection
  ☆11Updated last year
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated last year
• YossiSassi / Invoke-AdminSDHolderPermissionCheck
  Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent …
  ☆15Updated 3 months ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Updated 2 years ago
• wsummerhill / IPv4Fuscation-Encrypted
  ☆19Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 9 months ago
• OtterHacker / LabS4U2Self
  ☆31Updated 2 years ago
• watchtowrlabs / CVE-2024-50623
  Cleo Unrestricted file upload and download PoC (CVE-2024-50623)
  ☆23Updated 7 months ago
• duy-31 / CVE-2023-35636
  Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
  ☆44Updated last year
• TunnelGRE / XOR_NIM_Inject
  Simple shellcode injection in Nim encrypted in XOR
  ☆22Updated last year
• ron-imperva / CVE-2023-22524
  Atlassian Companion RCE Vulnerability Proof of Concept
  ☆25Updated last year
• smokeme / ProxyNotShell
  ☆19Updated 2 years ago
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆25Updated 11 months ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆27Updated 2 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• vin01 / poc-proxycommand-vulnerable-v2
  Proof of conept to exploit vulnerable proxycommand configurations on ssh clients
  ☆19Updated last year
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆39Updated 4 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆33Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated last year
• ceramicskate0 / BOF-Builder
  C# .Net 5.0 project to build BOF (Beacon Object Files) in mass
  ☆28Updated 2 years ago
• TerminalJockey / Kudzu
  Kudzu is a Go C2 platform with an emphasis on extensibility.
  ☆11Updated 4 years ago
• ZephrFish / DynamicMSBuilder
  A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation
  ☆36Updated 3 months ago
• bjornhels / CVE-2025-30065
  PoC
  ☆12Updated 3 months ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆38Updated 3 years ago
• LazyTitan33 / DomainPasswordSpray
  DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…
  ☆13Updated 2 weeks ago
• rashbx1 / RTO_Aggressor_Script
  Cobalt Strike Aggressor script create for RTO
  ☆15Updated last year
• horizon3ai / CVE-2024-9465
  Proof of Concept Exploit for CVE-2024-9465
  ☆29Updated 9 months ago
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆22Updated 2 years ago