Orange-Cyberdefense / CVE-repository
Repository of CVE found by OCD people
☆72Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-repository
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆36Updated last year
- The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)☆77Updated 5 months ago
- Windows Privilege Escalation☆42Updated 2 years ago
- ☆32Updated 2 years ago
- A webshell application and interactive shell for pentesting Apache Tomcat servers.☆95Updated 10 months ago
- PrintNightmare (CVE-2021-34527) PoC Exploit☆106Updated last year
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆79Updated 10 months ago
- Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...☆104Updated 9 months ago
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆43Updated 5 months ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆37Updated 2 years ago
- Shell Simulation over Net-SNMP with extend functionality☆88Updated 3 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆87Updated 2 years ago
- POC for Veeam Backup and Replication CVE-2023-27532☆58Updated last year
- Active Directory Penetration Testing for Red Teams☆52Updated last month
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆75Updated last year
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆103Updated 2 years ago
- Find Microsoft Exchange instance for a given domain and identify the exact version☆187Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆67Updated 2 months ago
- Analyzing AD domains for security risks related to user accounts☆63Updated last year
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆53Updated 10 months ago
- A tool to enumerate and exploit SQL Servers in AD☆34Updated last year
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆47Updated last year
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆77Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆166Updated last year
- Crackmapexec custom scripts used in my internal pentests.☆25Updated 11 months ago
- A script to dump files and folders remotely from a Windows SMB share.☆209Updated 4 months ago
- ☆29Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆77Updated 2 years ago
- Collection of username lists for enumerating kerberos domain users☆80Updated 6 years ago
- Azure Service Subdomain Enumeration☆42Updated 2 months ago