horizon3ai / CVE-2024-23108
CVE-2024-23108: Fortinet FortiSIEM Unauthenticated 2nd Order Command Injection
☆31Updated 3 months ago
Related projects: ⓘ
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆25Updated 6 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆29Updated 3 months ago
- ☆20Updated this week
- ☆50Updated 11 months ago
- OSED Practice binary☆24Updated 9 months ago
- ☆31Updated this week
- Pre-Auth Exploit for CVE-2024-40711☆16Updated this week
- DFSCoerce exe revisited version with custom authentication☆34Updated 8 months ago
- POC for unauthenticated RCE in Aspect Unified Installation Assistant by Aspect Software found in 2021.☆12Updated last year
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆25Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 4 months ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆20Updated 2 years ago
- ☆45Updated last year
- some sploits☆12Updated 4 months ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆26Updated 5 months ago
- Tools for Attacking Pleasant Password Server☆21Updated last year
- PoC for the Veeam Recovery Orchestrator Authentication CVE-2024-29855☆16Updated 3 months ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆37Updated 9 months ago
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆38Updated last year
- This repository presents a proof-of-concept of CVE-2023-22527☆13Updated 7 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated last year
- ☆57Updated 6 months ago
- Extension functionality for the NightHawk operator client☆26Updated 10 months ago
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆42Updated 7 months ago
- Tomcat backdoor based on CS blog☆25Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆32Updated 3 months ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated 9 months ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 2 years ago
- ☆15Updated 5 months ago
- ☆50Updated 5 months ago