Noxtal / follina
All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps such as Word. This is a very simple POC, feel free to check the sources below for more threat intelligence.
☆24Updated 2 years ago
Alternatives and similar repositories for follina:
Users that are interested in follina are comparing it to the libraries listed below
- Tomcat backdoor based on CS blog☆27Updated last year
- Cisco CallManager User Enumeration☆15Updated 2 years ago
- A little implant which SSH's back with a shell☆36Updated 3 years ago
- Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engageme…☆19Updated 2 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated last year
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆28Updated last year
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- ☆18Updated 4 months ago
- Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)☆23Updated 3 years ago
- A malicious .cab creation tool for CVE-2021-40444☆12Updated 3 years ago
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆25Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Exploit for elevation of privilege vulnerability in QuickHeal's Seqrite EPS (CVE-2023-31497).☆18Updated last year
- Remote Code Execution on Microsoft Exchange Server through fixed cryptographic keys☆20Updated 3 years ago
- A simple website to act as a store for havoc modules and extensions☆26Updated 2 months ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆32Updated 3 years ago
- Cobalt Strike profile generator using Jenkins to automate the heavy lifting☆34Updated 2 years ago
- Multi-thread AzureAD Autologon SSO Password Sprayer.☆36Updated 3 years ago
- Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.☆29Updated last year
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 2 years ago
- Create a lnk shortcut file for Windows☆16Updated 5 years ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 6 months ago
- Execute embedded Mimikatz☆13Updated 3 years ago
- Quickly generate every payload type for each listener and optionally host via HTTP.☆22Updated 3 years ago
- Multithreaded spraying of a password on all accounts of a domain.☆20Updated 2 months ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆39Updated last year
- Right-To-Left Override POC☆34Updated 3 years ago
- Shikata ga nai (仕方がない) encoder ported into go with several improvements☆26Updated 2 years ago