bodik / awesome-potatoesLinks
Study notes on Windows NTLM Reflection and token stealing based EOPs.
☆18Updated 4 years ago
Alternatives and similar repositories for awesome-potatoes
Users that are interested in awesome-potatoes are comparing it to the libraries listed below
Sorting:
- A tool to abuse Exchange services☆12Updated last year
- Perform Windows domain enumeration via LDAP☆36Updated 3 years ago
- Checks for signature requirements over LDAP☆97Updated 2 years ago
- c# reverse shell poc☆27Updated 6 years ago
- CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection☆33Updated last year
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆59Updated 2 years ago
- ☆52Updated last year
- Bypass Constrained Language Mode in PowerShell☆30Updated 6 years ago
- A small Python-Script to extract NetNTLMv2 Hashes from NTMLssp-HTTP-Authentications, which were captured in a pcap.☆25Updated 2 years ago
- Presentaciones de congresos☆53Updated last year
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆97Updated last year
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆68Updated 4 years ago
- PAM Backdoor☆30Updated 2 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- A Red Team tool for exfiltrating sensitive data from Confluence pages.☆113Updated 2 years ago
- Unfixed Windows PowerShell Filename Code Execution POC☆41Updated last year
- Python scanner for CVE-2022-47966. Supports ~10 of the 24 affected products.☆27Updated 2 years ago
- OSED Practice binary☆24Updated last year
- Azure pentesting reference for Altered Security Lab☆24Updated 3 years ago
- ☆43Updated 3 years ago
- PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-343…☆43Updated 5 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated 2 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆43Updated 3 years ago
- ☆31Updated 3 years ago
- Multi-thread AzureAD Autologon SSO Password Sprayer.☆37Updated 3 years ago
- Exchangelib wrapper for pentesting☆65Updated 7 months ago
- Tool for efficient directory enumeration☆63Updated 11 months ago
- 🐾Dogwalk PoC (using diagcab file to obtain RCE on windows)☆79Updated 3 years ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 3 years ago