horizon3ai / proxyshell
Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207
☆109Updated last year
Related projects ⓘ
Alternatives and complementary repositories for proxyshell
- Automatic ProxyShell Exploit☆114Updated 3 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆110Updated 2 years ago
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆178Updated 2 years ago
- Webmin <=1.984, CVE-2022-0824 Post-Auth Reverse Shell PoC☆109Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆42Updated 2 years ago
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆108Updated 2 years ago
- MSSQL Database Attacker tool☆185Updated 2 years ago
- Herramientas y utilidades de pentesting, ethical hacking y seguridad ofensiva.☆30Updated 2 months ago
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆103Updated 2 years ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆88Updated last year
- MS17-010_CVE-2017-0143☆38Updated this week
- ☆32Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆39Updated 3 years ago
- CVE-2023-0669 GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to des…☆100Updated 7 months ago
- Atlassian Bitbucket Data Center RCE(CVE-2022-26133) verification.☆148Updated 2 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆170Updated 3 weeks ago
- ☆154Updated 2 years ago
- DCSync Attack from Outside using Impacket☆111Updated 2 years ago
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆124Updated last year
- Collection of username lists for enumerating kerberos domain users☆81Updated 6 years ago
- MS-FSRVP coercion abuse PoC☆274Updated 2 years ago
- Windows Privilege Escalation☆43Updated 2 years ago
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆126Updated 2 years ago
- ☆45Updated 10 months ago
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆60Updated last year
- A webshell application and interactive shell for pentesting Apache Tomcat servers.☆95Updated 10 months ago
- CVE-2021-40444☆64Updated 2 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST RCE☆35Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆77Updated 2 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE☆86Updated 2 years ago