boku7 / LibreHealth-authRCELinks
LibreHealth v2.0.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) on the hosting webserver via uploading a maliciously crafted image.
☆13Updated 5 years ago
Alternatives and similar repositories for LibreHealth-authRCE
Users that are interested in LibreHealth-authRCE are comparing it to the libraries listed below
Sorting:
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 3 years ago
- Perform Windows domain enumeration via LDAP☆37Updated 3 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆38Updated 2 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆26Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 4 years ago
- LSASS enumeration like pypykatz written in C-Lang☆20Updated 4 years ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆11Updated 4 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆99Updated 4 years ago
- A little scanner to check the LDAP Signing state☆46Updated 4 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆44Updated 4 years ago
- IOXIDResolver from AirBus Security/PingCastle☆51Updated 5 years ago
- C# Data Collector for the BloodHound Project, Version 3☆37Updated 4 years ago
- Execute Mimikatz with different technique☆51Updated 4 years ago
- Laz-y project compatible C# templates for shellcode injection.☆20Updated 3 years ago
- Active Directory certificate abuse.☆38Updated 3 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆64Updated 3 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆53Updated 4 years ago
- ☆16Updated 3 years ago
- A little implant which SSH's back with a shell☆38Updated 3 years ago
- A collection of Cobalt Strike Malleable C2 profiles☆35Updated 5 years ago
- ☆31Updated 3 years ago
- Source Code Management Attack Toolkit☆13Updated 3 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆87Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆58Updated 3 years ago
- c# reverse shell poc☆26Updated last week
- ☆22Updated 3 years ago
- ☆31Updated 3 years ago
- SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.☆26Updated 2 years ago