Keramas / mssqli-duetLinks
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
☆90Updated 5 years ago
Alternatives and similar repositories for mssqli-duet
Users that are interested in mssqli-duet are comparing it to the libraries listed below
Sorting:
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆81Updated 4 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆40Updated 4 years ago
- DO NOT RUN THIS.☆48Updated 3 years ago
- A tool for creating proxy dll for hijacking☆42Updated 11 months ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 4 years ago
- Stealthy Stand Alone PHP Web Shell☆33Updated 6 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆76Updated 5 years ago
- A web shell for pivoting and lateral movement☆34Updated 7 years ago
- ☆51Updated 3 years ago
- Nmap script to check vulnerability CVE-2021-21972☆28Updated 4 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆87Updated 2 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Updated 4 years ago
- ☆54Updated 4 years ago
- SonicWALL SSL-VPN Web Server Vulnerable Exploit☆48Updated 4 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆137Updated 5 years ago
- ☆19Updated 5 years ago
- A tool to password spray Jenkins instances☆57Updated 6 years ago
- Hacking Artifactory with server side template injection☆51Updated 5 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 5 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆55Updated 4 years ago
- ☆100Updated 4 years ago
- Generate image payloads in JS to bypass filters☆39Updated 4 years ago
- SMBGhost (CVE-2020-0796) and SMBleed (CVE-2020-1206) Scanner☆46Updated 5 years ago
- Python port of MailSniper to exfiltrate emails via EWS endpoint☆87Updated 3 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- Vuln Liferay scanner & Exploit☆21Updated 5 years ago
- Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.☆48Updated 4 years ago
- ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassin…☆31Updated 4 years ago