Noxtal / follinaLinks
All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps such as Word. This is a very simple POC, feel free to check the sources below for more threat intelligence.
☆22Updated 3 years ago
Alternatives and similar repositories for follina
Users that are interested in follina are comparing it to the libraries listed below
Sorting:
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆44Updated last year
- CVE-2023-20198 & 0Day Implant Scanner☆33Updated last month
- Cobalt Strike profile generator using Jenkins to automate the heavy lifting☆38Updated 2 years ago
- Unfixed Windows PowerShell Filename Code Execution POC☆41Updated 2 years ago
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆15Updated last year
- Helping to automate payload development, testing, Opsec checking, beacon tasking, and deployment for Cobalt Strike☆52Updated 3 years ago
- Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engageme…☆21Updated 3 years ago
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆24Updated last year
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆34Updated last year
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆26Updated 3 years ago
- Tomcat backdoor based on CS blog☆27Updated 2 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆33Updated 4 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆14Updated 3 years ago
- Yet, Another Packer/Loader☆25Updated 2 years ago
- ☆22Updated 2 years ago
- Remote Code Execution on Microsoft Exchange Server through fixed cryptographic keys☆22Updated 4 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated 2 years ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated 2 months ago
- Zeroday Microsoft Exchange Server checker (Virtual Patching checker)☆67Updated 3 years ago
- Quickly generate every payload type for each listener and optionally host via HTTP.☆22Updated 4 years ago
- Cisco CallManager User Enumeration☆15Updated 3 years ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆65Updated 3 years ago
- PoC + vulnerability details for CVE-2022-25262 / JetBrains Hub single-click SAML response takeover☆16Updated 3 years ago
- A malicious .cab creation tool for CVE-2021-40444☆13Updated 4 years ago
- Tool to start processes as SYSTEM using token duplication☆38Updated 5 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆25Updated 2 years ago
- Multithreaded spraying of a password on all accounts of a domain.☆26Updated 11 months ago
- A wrapper script for https://sploitus.com to scrape query results for tools and exploits☆14Updated 6 years ago
- Invoke-SocksProxy is a PowerShell script designed to create reverse proxies.☆49Updated 4 years ago
- ☆12Updated 2 years ago