blacklanternsecurity / dp_cryptomg
Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
☆45Updated 4 months ago
Alternatives and similar repositories for dp_cryptomg:
Users that are interested in dp_cryptomg are comparing it to the libraries listed below
- Secretsdump C# version only supporting local (live) operation☆47Updated last year
- Convert ldapdomaindump to Bloodhound☆78Updated last year
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆81Updated last year
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆31Updated 2 years ago
- Tool for efficient directory enumeration☆55Updated 2 months ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆31Updated 3 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆105Updated last year
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆49Updated 3 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆12Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Modified version of PEAS client for offensive operations☆38Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆70Updated last year
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…☆12Updated 2 years ago
- Active Directory ACL exploitation with BloodHound☆12Updated 3 years ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆23Updated 3 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- Checks for signature requirements over LDAP☆94Updated 2 years ago
- ☆77Updated last year
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- Tool to start processes as SYSTEM using token duplication☆37Updated 4 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- Enumerate AWS cloud resources based on provided credential☆50Updated 2 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆50Updated 2 years ago