cyberxml / log4j-poc
A Docker based LDAP RCE exploit demo for CVE-2021-44228 Log4Shell
☆68Updated last year
Related projects ⓘ
Alternatives and complementary repositories for log4j-poc
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆102Updated 2 years ago
- Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228)☆77Updated 2 years ago
- Run several volatility plugins at the same time☆108Updated 2 years ago
- Upload files done during my research.☆130Updated this week
- Enumerate AD through LDAP with a collection of helpfull scripts being bundled☆140Updated 3 weeks ago
- ☆68Updated last year
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆141Updated last year
- Becoming the spider, crawling through the webs to catch the fly.☆72Updated 3 years ago
- Lookup for interesting stuff in SMB shares☆149Updated last year
- Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.☆123Updated 4 months ago
- ☆99Updated 3 years ago
- Enumerate AWS permissions and resources.☆64Updated 2 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆87Updated 2 years ago
- Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege e…☆52Updated 2 years ago
- Toolset for automating common management actions used in CTF's☆36Updated 3 years ago
- Genshell: The atomatic copy-and-paste oneline reverse shell generator. Just add args!☆67Updated 3 years ago
- Slides, documentation, and files from my presentation at Red Team Village for HackerOne's hacktivitycon.☆34Updated 3 years ago
- Proof of Concept exploit scripts and fuzzing templates. Companion blog posts located at https://epi052.gitlab.io/notes-to-self/blog/2020…☆56Updated 4 years ago
- An active directory laboratory for penetration testing.☆126Updated 3 years ago
- ☆41Updated 2 years ago
- Traditional AD RedTeam Full Enumeration Script used to query all aspects of your target Forest.☆41Updated 5 months ago
- Low and slow password spraying tool, designed to spray on an interval over a long period of time☆188Updated last month
- ☆36Updated last month
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆118Updated 7 months ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆105Updated 2 years ago
- Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.☆47Updated 2 years ago
- Target practice for ffuf☆59Updated 3 years ago
- BloodHound Docker Ready to Use☆86Updated last year
- Collection of Azure Tools to Pull down for Attacking an Environment + quick tips and other useful information☆72Updated 2 years ago