LudovicPatho / CVE-2022-26923_AD-Certificate-Services
The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment with the Active Directory Certificate Services (AD CS) server role installed.
☆42Updated 2 years ago
Related projects: ⓘ
- CVE-2021-40444☆63Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆39Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆102Updated last year
- Convert Cobalt Strike profiles to IIS web.config files☆109Updated 3 years ago
- DCSync Attack from Outside using Impacket☆109Updated 2 years ago
- ☆42Updated this week
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆76Updated last year
- ☆28Updated this week
- CVE-2023-20198 Exploit PoC☆37Updated 9 months ago
- ☆53Updated 5 months ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆171Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆77Updated 9 months ago
- Windows Privilege Escalation☆41Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆74Updated 2 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆37Updated last year
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆160Updated last year
- ☆40Updated 2 years ago
- .Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Scanner & Exploit noPac☆59Updated last year
- DLL Hijack Search Order Enumeration BOF☆140Updated 2 years ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆107Updated 2 years ago
- Pass the Hash to a named pipe for token Impersonation☆140Updated 3 years ago
- ☆50Updated 2 years ago
- Bypass Detection By Randomising ROR13 API Hashes☆131Updated 2 years ago
- Winsocket for Cobalt Strike.☆96Updated last year
- ☆87Updated 2 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆83Updated 3 years ago
- Case for CVE-2022-30778☆23Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆47Updated last year