PercussiveElbow / docker-escape-tool
Tool to test if you're in a Docker container and attempt simple breakouts
☆133Updated last year
Related projects: ⓘ
- Linux privilege escalation via LXD☆129Updated 4 years ago
- A denial-of-service proof-of-concept for CVE-2020-1350☆238Updated 4 years ago
- ☆127Updated last year
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆420Updated 2 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆209Updated 3 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆138Updated 3 years ago
- Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)☆234Updated 3 years ago
- This is an exploit for CVE-2020-0674 that runs on the x64 version of IE 8, 9, 10, and 11 on Windows 7.☆221Updated 4 years ago
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆197Updated last year
- Tool to extract Kerberos tickets from Linux kernel keys.☆212Updated 5 years ago
- Proof of Concept Exploit for vCenter CVE-2021-21972☆248Updated 3 years ago
- Exploit for CVE-2020-3952 in vCenter 6.7☆271Updated 4 years ago
- Root shell PoC for CVE-2021-3156☆143Updated 2 years ago
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆120Updated 2 years ago
- HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Se…☆280Updated 3 years ago
- ☆108Updated last year
- Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.☆176Updated last year
- Script and resources to execute shell commands using access to a PostgreSQL service☆64Updated 7 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆581Updated 3 years ago
- Bash Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server …☆103Updated 4 years ago
- ☆258Updated last year
- PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)☆215Updated 3 years ago
- SOCKS5 and HTTP over TURN/STUN proxy☆172Updated 8 months ago
- Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation☆206Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆110Updated 4 years ago
- Simple python script to extract unsafe functions from php projects☆195Updated 6 years ago
- d(ockerp)wn - a docker pwn tool manager☆156Updated 3 years ago
- A collection of scripts, and tips and tricks for hacking k8s clusters and containers.☆132Updated this week
- Exploit to SYSTEM for CVE-2021-21551☆236Updated 3 years ago
- CVE-2018-13379☆250Updated 5 years ago