NotSoSecure / Blacklist3r
project-blacklist3r
☆545Updated 2 months ago
Alternatives and similar repositories for Blacklist3r
Users that are interested in Blacklist3r are comparing it to the libraries listed below
Sorting:
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆351Updated 3 years ago
- IOXIDResolver.py from AirBus Security☆249Updated last year
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆618Updated 3 months ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆598Updated 4 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆745Updated 4 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆628Updated last year
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆877Updated 2 years ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆178Updated 3 years ago
- Java RMI Vulnerability Scanner☆861Updated 10 months ago
- A super small jsp webshell with file upload capabilities.☆297Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆611Updated last year
- Standalone binaries for Linux/Windows of Impacket's examples☆728Updated last year
- Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io), LOLBAS (https://github.com/LOLBAS-Proj…☆280Updated last year
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆745Updated 4 years ago
- JMX enumeration and attacking tool.☆439Updated last month
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆267Updated 3 months ago
- ActiveScan++ Burp Suite Plugin☆223Updated last month
- ☆776Updated 2 years ago
- Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).☆774Updated last year
- Exchange your privileges for Domain Admin privs by abusing Exchange☆1,013Updated 5 years ago
- Another Windows Local Privilege Escalation from Service Account to System☆1,088Updated 4 years ago
- Extracts Key Values from .keytab files☆271Updated 4 years ago
- Collection of PoC and offensive techniques used by the BlackArrow Red Team☆1,120Updated 9 months ago
- Password spraying and bruteforcing tool for Active Directory Domain Services☆367Updated 6 months ago
- linikatz is a tool to attack AD on UNIX☆558Updated last year
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆539Updated 2 years ago
- Recover the default privilege set of a LOCAL/NETWORK SERVICE account☆615Updated 5 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆432Updated 2 years ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 3 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆128Updated 5 years ago