Keramas / mssqli-duetLinks
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
☆92Updated 5 years ago
Alternatives and similar repositories for mssqli-duet
Users that are interested in mssqli-duet are comparing it to the libraries listed below
Sorting:
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆81Updated 3 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Updated 4 years ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 4 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆55Updated 5 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- ☆50Updated 3 years ago
- A web shell for pivoting and lateral movement☆34Updated 7 years ago
- Takes a URL and checks the system for the tilde enum vuln and then find the files.☆24Updated 5 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆63Updated 6 years ago
- CVE-2018-9276 PRTG < 18.2.39 Authenticated Command Injection (Reverse Shell)☆36Updated 4 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 6 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆54Updated 4 years ago
- ☆45Updated 8 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆76Updated 4 years ago
- Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.☆47Updated 4 years ago
- A tool for creating proxy dll for hijacking☆42Updated 7 months ago
- Here you can get full exploit for SAP NetWeaver AS JAVA☆76Updated 7 years ago
- learning case to prepare OSWE☆37Updated 5 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆85Updated 2 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆87Updated 2 years ago
- ☆101Updated 4 years ago
- Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution☆75Updated 4 years ago
- ☆42Updated 2 years ago
- A bridge between masscan and nmap - run fast masscan, parse output, execute nmap using masscan as input☆29Updated 6 months ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆156Updated 4 years ago
- ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassin…☆31Updated 4 years ago
- Cheat sheet☆38Updated 5 years ago
- ☆67Updated 6 years ago