p0dalirius / CVE-2022-45771-Pwndoc-LFI-to-RCELinks
Pwndoc local file inclusion to remote code execution of Node.js code on the server
☆47Updated 6 months ago
Alternatives and similar repositories for CVE-2022-45771-Pwndoc-LFI-to-RCE
Users that are interested in CVE-2022-45771-Pwndoc-LFI-to-RCE are comparing it to the libraries listed below
Sorting:
- A repository with my code snippets for research/education purposes.☆50Updated 2 years ago
- Remote Template Injection Toolkit☆42Updated last year
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 11 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆24Updated 5 months ago
- Used to get NTLMv2 Hashes from SMB☆16Updated 9 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆56Updated last year
- Multithreaded spraying of a password on all accounts of a domain.☆21Updated 5 months ago
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆36Updated 2 months ago
- C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments☆111Updated 3 years ago
- ☆52Updated last year
- ☆47Updated 3 years ago
- quick and dirty proof-of-concept to hide shells in images☆50Updated last year
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆22Updated last year
- The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.☆64Updated 6 months ago
- Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data☆46Updated last year
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆39Updated 6 months ago
- Cobalt Strike BOFS☆16Updated last year
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆58Updated 5 months ago
- Duplicate not owned Token from Running Process☆72Updated 2 years ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆90Updated last year
- A tool to extract and dump files of mercurial SCM exposed on a web server.☆12Updated 6 months ago
- ☆28Updated 2 years ago
- ☆70Updated 4 months ago
- ☆57Updated 8 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆26Updated 5 months ago
- ☆51Updated last year
- ☆89Updated 6 months ago
- A proof-of-concept C2 channel through DuckDuckGo's image proxy service☆75Updated last year