Keramas / mssqli-duetLinks
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
☆91Updated 5 years ago
Alternatives and similar repositories for mssqli-duet
Users that are interested in mssqli-duet are comparing it to the libraries listed below
Sorting:
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆81Updated 4 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- DO NOT RUN THIS.☆47Updated 3 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆77Updated 4 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Updated 4 years ago
- Stealthy Stand Alone PHP Web Shell☆33Updated 5 years ago
- A tool for creating proxy dll for hijacking☆42Updated 9 months ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 4 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- ☆54Updated 4 years ago
- ☆51Updated 3 years ago
- ☆67Updated 6 years ago
- Python port of MailSniper to exfiltrate emails via EWS endpoint☆88Updated 3 years ago
- A web shell for pivoting and lateral movement☆34Updated 7 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 5 years ago
- ☆101Updated 4 years ago
- SMBGhost (CVE-2020-0796) and SMBleed (CVE-2020-1206) Scanner☆46Updated 5 years ago
- Nmap script to check vulnerability CVE-2021-21972☆28Updated 4 years ago
- ☆19Updated 4 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆85Updated 2 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal☆106Updated 5 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Updated 4 years ago
- ☆36Updated 6 months ago
- Checks for signature requirements over LDAP☆97Updated 2 years ago
- Hacking Artifactory with server side template injection☆51Updated 5 years ago
- XMLRPC - RCE in MovableTypePoC☆21Updated 3 years ago
- A tool to password spray Jenkins instances☆57Updated 6 years ago
- ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassin…☆31Updated 4 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago