eelyvy / log4jshell-pdf
The purpose of this project is to demonstrate the Log4Shell exploit with Log4J vulnerabilities using PDF as delivery channel
☆159Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for log4jshell-pdf
- Webmin <=1.984, CVE-2022-0824 Post-Auth Reverse Shell PoC☆109Updated 2 years ago
- Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207☆109Updated last year
- ☆154Updated 2 years ago
- Automatic ProxyShell Exploit☆114Updated 3 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆110Updated 2 years ago
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆124Updated last year
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆178Updated 2 years ago
- ☆206Updated 3 years ago
- MSSQL Database Attacker tool☆185Updated 2 years ago
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆103Updated 2 years ago
- 🚪 Quick & dirty Wordpress Command Execution Shell☆66Updated 2 years ago
- CVE-2021-40444☆64Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆141Updated 2 years ago
- ☆214Updated last year
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆87Updated 2 years ago
- CVE-2022-26134 Proof of Concept☆159Updated 2 years ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆88Updated last year
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆322Updated 2 years ago
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- ☆32Updated 2 years ago
- Use python to perform Kerberos pre-auth bruteforcing☆188Updated last year
- ProxyLogon Pre-Auth SSRF To Arbitrary File Write☆124Updated last year
- ☆290Updated 4 months ago
- Deobfuscate Log4Shell payloads with ease.☆160Updated 2 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE☆86Updated 2 years ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆108Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆42Updated 2 years ago
- ☆45Updated 10 months ago
- Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.☆45Updated 3 years ago