blacklanternsecurity / dp_cryptomgLinks
Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
☆53Updated 9 months ago
Alternatives and similar repositories for dp_cryptomg
Users that are interested in dp_cryptomg are comparing it to the libraries listed below
Sorting:
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆23Updated 3 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆90Updated last year
- ☆50Updated 2 years ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆68Updated 3 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- Checks for signature requirements over LDAP☆97Updated 2 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆32Updated 3 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- tool that generates bypasses for open redirects☆52Updated 3 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- PickleC2 is a post-exploitation and lateral movements framework☆96Updated 3 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆64Updated last year
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆29Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- SAP memory pipes(MPI) desynchronization vulnerability CVE-2022-22536.☆51Updated 3 years ago
- User enumeration and password spraying tool for testing Azure AD☆69Updated 3 years ago
- Tool for efficient directory enumeration☆56Updated 7 months ago
- Active Directory certificate abuse.☆38Updated 3 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- ☆86Updated 2 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆49Updated last month
- Scan for and exploit the zerologon vulnerability.☆10Updated 4 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆45Updated 2 years ago
- Active Directory ACL exploitation with BloodHound☆12Updated 4 years ago
- Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…☆13Updated 2 years ago