p0dalirius / AccountShadowTakeoverLinks
A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
☆22Updated last year
Alternatives and similar repositories for AccountShadowTakeover
Users that are interested in AccountShadowTakeover are comparing it to the libraries listed below
Sorting:
- A script to factorize integers with sagemath and factordb.☆12Updated 8 months ago
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆27Updated 8 months ago
- A python wrapper to run a command on against all users/computers/DCs of a Windows Domain☆28Updated 3 years ago
- Multithreaded spraying of a password on all accounts of a domain.☆23Updated 8 months ago
- A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.☆13Updated 3 years ago
- Command line tool to fetch, decode and brute-force CodeIgniter session cookies by guessing and bruteforcing secret keys.☆14Updated 9 months ago
- A collection of http fuzzing python scripts to fuzz HTTP servers for bugs.☆15Updated 2 years ago
- A webshell plugin and interactive shell for pentesting a LimeSurvey application.☆21Updated last year
- A webshell plugin and interactive shell for pentesting JoGet application.☆13Updated 3 years ago
- A Python script to find tenant id an region from a list of domain names.☆15Updated 9 months ago
- A tool to extract and dump files of mercurial SCM exposed on a web server.☆13Updated 9 months ago
- A script to enumerate valid usernames based on the requests response times.☆20Updated 3 years ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆24Updated 8 months ago
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆46Updated 9 months ago
- A python script to check if URLs are allowed or disallowed by a robots.txt file.☆21Updated 8 months ago
- The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.☆64Updated last month
- MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)☆20Updated 3 years ago
- Python script to check if there is any differences in responses of an application when the request comes from a search engine's crawler.☆22Updated 2 years ago
- Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.☆26Updated 2 years ago
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆38Updated last month
- Decode the values of common Windows properties such as userAccountControl and sAMAccountType.☆23Updated 2 years ago
- A python tool to generate an Excel file linking the list of cracked accounts and their LDAP attributes.☆10Updated 9 months ago
- A Python script to parse Fortinet products serial numbers, and detect the associated model and revision.☆18Updated 2 years ago
- This repository presents a proof-of-concept of CVE-2023-22527☆11Updated last year
- List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.☆23Updated 9 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- A Python script to backup all repos (public or private) of a user.☆20Updated 2 years ago
- A python script to automatically dump files and source code of a Symfony server in debug mode.☆12Updated 8 months ago
- A webshell plugin and interactive shell for pentesting a Moodle instance.☆36Updated 8 months ago
- A Python script to extract the list of users of a GiTea instance, unauthenticated or authenticated.☆15Updated 8 months ago