p0dalirius / AccountShadowTakeover
A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
☆21Updated last year
Alternatives and similar repositories for AccountShadowTakeover:
Users that are interested in AccountShadowTakeover are comparing it to the libraries listed below
- A Python script to find tenant id an region from a list of domain names.☆14Updated 2 months ago
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 months ago
- A collection of http fuzzing python scripts to fuzz HTTP servers for bugs.☆15Updated last year
- Multithreaded spraying of a password on all accounts of a domain.☆20Updated 2 months ago
- A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.☆12Updated 2 years ago
- A webshell plugin and interactive shell for pentesting a LimeSurvey application.☆19Updated 5 months ago
- Decode the values of common Windows properties such as userAccountControl and sAMAccountType.☆21Updated last year
- Python script to check if there is any differences in responses of an application when the request comes from a search engine's crawler.☆22Updated last year
- A python wrapper to run a command on against all users/computers/DCs of a Windows Domain☆27Updated 2 years ago
- This repository presents a proof-of-concept of CVE-2023-22527☆12Updated last year
- List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.☆18Updated 2 months ago
- A script to factorize integers with sagemath and factordb.☆11Updated 2 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated 2 months ago
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆15Updated 9 months ago
- A tool to extract and dump files of mercurial SCM exposed on a web server.☆10Updated 2 months ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 6 months ago
- MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)☆16Updated 2 years ago
- Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.☆24Updated last year
- ☆21Updated last year
- A script to enumerate valid usernames based on the requests response times.☆19Updated 2 years ago
- Tools for Attacking Pleasant Password Server☆22Updated last year
- CVE-2022-30780 - lighttpd remote denial of service☆16Updated last year
- Extract the windows major and minor build numbers from an ISO file, and automatically sort the iso files.☆14Updated 6 months ago
- A Python script to parse Fortinet products serial numbers, and detect the associated model and revision.☆17Updated last year
- Detailed explanation of Windows cryptographic algorithms, with examples and schemes.☆18Updated 4 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- ☆18Updated 4 months ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆39Updated last year
- ☆19Updated 6 months ago
- ☆48Updated 2 years ago