jiansiting / CVE-2025-59287View external linksLinks
WSUS Unauthenticated RCE
☆170Oct 28, 2025Updated 3 months ago
Alternatives and similar repositories for CVE-2025-59287
Users that are interested in CVE-2025-59287 are comparing it to the libraries listed below
Sorting:
- Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData!☆73Feb 4, 2026Updated last week
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Oct 28, 2025Updated 3 months ago
- LAPS module for CrackMapExec☆29Oct 20, 2021Updated 4 years ago
- Integer overflow in FreeType software, which also affects Chrome☆23Aug 27, 2025Updated 5 months ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆196Dec 30, 2025Updated last month
- Troll TaskManager, and play with it .☆30Aug 3, 2025Updated 6 months ago
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆63Jan 21, 2025Updated last year
- ☆70Dec 26, 2025Updated last month
- Dump LSASS via physical memory read primitives in vulnerable kernel drivers☆246Feb 2, 2026Updated last week
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Nov 2, 2025Updated 3 months ago
- ☆24May 14, 2025Updated 9 months ago
- Commandline spoofing on Windows☆93Nov 25, 2025Updated 2 months ago
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆102Jan 9, 2026Updated last month
- Example of running C3 (https://github.com/FSecureLABS/C3) in a Docker container☆27Oct 24, 2021Updated 4 years ago
- LPE of CVE-2024-26230☆23Sep 1, 2024Updated last year
- Beacon Object Files (BOFs) for Cobalt Strike and Havoc C2. Implementations of Active Directory attacks and post-exploitation techniques.☆99Jan 26, 2026Updated 2 weeks ago
- Updated o365 Evilginx phishlet for WHfB☆89Mar 16, 2024Updated last year
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- Execute commands, in/exfiltrate files using your custom RPC Server☆63Jan 13, 2026Updated last month
- This repository contains a collection of scripts I use regularly for offensive security-related tasks.☆15Jan 17, 2026Updated 3 weeks ago
- Document intricacies of using WinDBG to aid Rust project development☆15Nov 19, 2024Updated last year
- poc for cve-2025-53772☆46Dec 10, 2025Updated 2 months ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆38Aug 5, 2025Updated 6 months ago
- ADCS cert template modification and ACL enumeration☆144Jun 26, 2023Updated 2 years ago
- YARA detection rule for CVE-2024-4367 arbitrary javascript execution in PDF.js☆11May 27, 2024Updated last year
- ☆14Aug 22, 2025Updated 5 months ago
- User-Defined C2 BOF Template☆27Nov 24, 2025Updated 2 months ago
- ☆12Nov 25, 2024Updated last year
- Enable EFS service as low priv user (PE & BOF)☆21Jul 6, 2025Updated 7 months ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Aug 13, 2025Updated 6 months ago
- Exhaustive search and flexible filtering of Active Directory ACEs.☆73Nov 10, 2025Updated 3 months ago
- NSecSoftBYOVD POC☆55Updated this week
- A lightweight Windows Prefetch file parser to extract programs' execution history☆63Jan 12, 2026Updated last month
- Abusing SSRF to deliver an authenticated command injection payload☆30Sep 1, 2025Updated 5 months ago
- Impersonate Windows tokens in Nim☆23Aug 4, 2025Updated 6 months ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆13Jul 16, 2025Updated 6 months ago
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 2 months ago
- A stager and implant that executes remote Web Assembly☆33Feb 4, 2026Updated last week
- ☆19Dec 31, 2025Updated last month