michaelpoznecki / zerologon
Scan for and exploit the zerologon vulnerability.
☆10Updated 4 years ago
Alternatives and similar repositories for zerologon:
Users that are interested in zerologon are comparing it to the libraries listed below
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆56Updated 4 months ago
- This repository presents a proof-of-concept of CVE-2023-22527☆12Updated last year
- Ivanti EPM SQL Injection Remote Code Execution Vulnerability☆22Updated 10 months ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 6 months ago
- Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.☆50Updated 8 months ago
- Convert ldapdomaindump to Bloodhound☆79Updated last year
- Exploits Unauth Docker API☆39Updated last week
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 months ago
- Template Nuclei SSTI☆29Updated last year
- ☆48Updated 2 years ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆56Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- Secretsdump C# version only supporting local (live) operation☆48Updated last week
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆23Updated 3 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- SAM Dumping in C#☆48Updated 3 months ago
- CVE-2022-41040 nuclei template☆18Updated 2 years ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated 2 months ago
- .Net Assembly loader for the GMSAPasswordReader☆12Updated 2 years ago
- VMware Workspace ONE Access and Identity Manager RCE via SSTI - Test script for shodan, file or manual.☆11Updated last year
- A repository with my code snippets for research/education purposes.☆50Updated last year
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆51Updated 2 years ago
- CVE-2023-20198 Exploit PoC☆45Updated last year
- Phishing Framework for OTP codes☆19Updated this week
- Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent …☆15Updated 2 weeks ago
- Used to get NTLMv2 Hashes from SMB☆12Updated 6 months ago