hakaioffsec / IngressNightmare-PoCView external linksLinks
This is a PoC code to exploit the IngressNightmare vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974).
☆248Mar 26, 2025Updated 10 months ago
Alternatives and similar repositories for IngressNightmare-PoC
Users that are interested in IngressNightmare-PoC are comparing it to the libraries listed below
Sorting:
- CVE-2025-1974☆90Apr 2, 2025Updated 10 months ago
- ☆53Mar 25, 2025Updated 10 months ago
- Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit☆83Oct 7, 2024Updated last year
- IngressNightmare POC. world first non-blind remote execution exploitation with multi-advanced exploitation methods. allow on disk exploit…☆92May 6, 2025Updated 9 months ago
- Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)☆95Apr 2, 2025Updated 10 months ago
- Exploit for the vulnerability CVE-2024-43044 in Jenkins☆184Oct 2, 2024Updated last year
- PoC☆12Apr 7, 2025Updated 10 months ago
- ☆79Nov 22, 2024Updated last year
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆61Apr 19, 2025Updated 9 months ago
- ☆158Jul 10, 2024Updated last year
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆91May 7, 2024Updated last year
- CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File☆395Mar 20, 2025Updated 10 months ago
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆226Apr 12, 2025Updated 10 months ago
- A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate f…☆85Nov 3, 2025Updated 3 months ago
- CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) RCE POC☆20Nov 19, 2024Updated last year
- LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113☆513Jan 2, 2025Updated last year
- CVE-2025-30208-EXP☆199Apr 1, 2025Updated 10 months ago
- Authenticated 0-click RCE against Linux 6.1.45 for CVE-2023-52440 and CVE-2023-4130☆52Sep 13, 2025Updated 5 months ago
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆381Apr 26, 2025Updated 9 months ago
- ☆41Mar 12, 2025Updated 11 months ago
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆146Jan 13, 2025Updated last year
- Exploit for CVE-2024-0402 in Gitlab☆15Mar 18, 2025Updated 10 months ago
- ☆20Sep 6, 2025Updated 5 months ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆502Jan 12, 2026Updated last month
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆381Dec 13, 2024Updated last year
- PoC Exploit for the NTLM reflection SMB flaw.☆674Updated this week
- A local privilege escalation vulnerability in VMware vCenter Server (and VMware Cloud� Foundation) caused by a misconfiguration of sudo, a…☆58Jul 9, 2024Updated last year
- Nacos Derby命令执行漏洞利用脚本☆151Apr 7, 2025Updated 10 months ago
- Time Based SQL Injection in Zabbix Server Audit Log --> RCE☆127May 21, 2024Updated last year
- Proof of Concept for Authentication Bypass in JetBrains TeamCity Pre-2023.11.4☆36Mar 5, 2024Updated last year
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆351Jan 8, 2024Updated 2 years ago
- The Poc for CVE-2024-20931☆76Feb 2, 2024Updated 2 years ago
- ☆198Mar 28, 2025Updated 10 months ago
- ☆38Dec 14, 2024Updated last year
- Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()☆502Sep 30, 2024Updated last year
- Proof of concept & details for CVE-2025-21298☆195Jan 20, 2025Updated last year
- Windows remote execution multitool☆780Oct 1, 2025Updated 4 months ago
- Proof of Concept CVE-2025-21420 (Windows Disk Cleanup Tool EoP)☆56Jun 12, 2025Updated 8 months ago
- Smart keylogging capability to steal SSH Credentials including password & Private Key☆151Mar 26, 2025Updated 10 months ago