h4x0r-dz / CVE-2021-26855

Related projects ⓘ

Alternatives and complementary repositories for CVE-2021-26855

• samwcyo / CVE-2021-27651-PoC
  RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2
  ☆60Updated 3 years ago
• thelikes / owncraft
  offensive notes & resources
  ☆40Updated this week
• phackt / Invoke-Recon
  "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…
  ☆79Updated 3 years ago
• 0xf4n9x / SonicWall_SSL-VPN_EXP
  SonicWALL SSL-VPN Web Server Vulnerable Exploit
  ☆46Updated 3 years ago
• AlteredSecurity / CVE-2021-38647
  CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD
  ☆68Updated 3 years ago
• alt3kx / CVE-2022-1388_PoC
  F5 BIG-IP RCE exploitation (CVE-2022-1388)
  ☆87Updated 2 years ago
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆83Updated 3 years ago
• GoSecure / ldap-scanner
  Checks for signature requirements over LDAP
  ☆92Updated 2 years ago
• bashexplode / cs2webconfig
  Convert Cobalt Strike profiles to IIS web.config files
  ☆110Updated 3 years ago
• EncodeGroup / Gopher
  C# tool to discover low hanging fruits
  ☆89Updated last year
• praetorian-inc / proxylogon-exploit
  Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.
  ☆45Updated 3 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆79Updated 11 months ago
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆30Updated 3 years ago
• ZZ-SOCMAP / CVE-2022-22536
  SAP memory pipes(MPI) desynchronization vulnerability CVE-2022-22536.
  ☆50Updated 2 years ago
• S1lkys / CVE-2020-15906
  Writeup of CVE-2020-15906
  ☆44Updated 4 years ago
• hyp3rlinx / DarkFinger-C2
  Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software
  ☆65Updated last year
• B34MR / scanman
  ScanMan is the amalgamation of Masscan, Metasploit Framework (MSF) and Nmap Scripting Engine (NSE).
  ☆51Updated 8 months ago
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆42Updated 2 years ago
• faisalfs10x / Log4j2-CVE-2021-44228-revshell
  Log4j2 CVE-2021-44228 revshell, ofc it suck!!
  ☆19Updated 2 years ago
• iomoath / PyExchangePasswordSpray
  Microsoft Exchange password spray tool with proxy support.
  ☆40Updated 3 years ago
• blacklanternsecurity / dp_cryptomg
  Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
  ☆44Updated 3 months ago
• winterwolf32 / Red-teaming
  ☆23Updated 5 years ago
• manuelz120 / CVE-2021-45897
  PoC for CVE-2021-45897
  ☆17Updated 2 years ago
• Keramas / mssqli-duet
  SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
  ☆92Updated 4 years ago
• itm4n / Pentest-Tools
  Some random tools I use for penetration testing
  ☆82Updated last month
• chryzsh / JenkinsPasswordSpray
  A tool to password spray Jenkins instances
  ☆52Updated 5 years ago
• NinjaJc01 / imagepayloadgen
  Generate image payloads in JS to bypass filters
  ☆39Updated 3 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆36Updated last year
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 2 years ago