boku7 / LibreHealth-authRCELinks
LibreHealth v2.0.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) on the hosting webserver via uploading a maliciously crafted image.
☆13Updated 5 years ago
Alternatives and similar repositories for LibreHealth-authRCE
Users that are interested in LibreHealth-authRCE are comparing it to the libraries listed below
Sorting:
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆28Updated 2 years ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆11Updated 4 years ago
- Perform Windows domain enumeration via LDAP☆37Updated 3 years ago
- Tomcat backdoor based on CS blog☆27Updated 2 years ago
- Laz-y project compatible C# templates for shellcode injection.☆20Updated 3 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆39Updated 2 years ago
- A little implant which SSH's back with a shell☆38Updated 3 years ago
- C# Data Collector for the BloodHound Project, Version 3☆37Updated 3 years ago
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆59Updated 2 years ago
- ☆14Updated 3 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Source Code Management Attack Toolkit☆12Updated 3 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- ☆20Updated last year
- A PoC executing shellcode in Dart☆17Updated 3 years ago
- Windows File Enumeration Intel Gathering Tool.☆17Updated 2 years ago
- Modified version of Pypykatz to print encrypted credentials☆53Updated 2 years ago
- Active Directory certificate abuse.☆38Updated 3 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆63Updated 3 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆98Updated 4 years ago
- ☆31Updated 3 years ago
- ☆53Updated 3 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 4 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 3 years ago
- A python port of CCob's ThreadlessInject☆25Updated 2 years ago
- IOXIDResolver from AirBus Security/PingCastle☆51Updated 4 years ago
- An aggressor script for Cobalt Strike to query Windows' GetLastError messages☆18Updated 3 years ago