p0dalirius / JoGet-webshell-plugin
A webshell plugin and interactive shell for pentesting JoGet application.
☆12Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for JoGet-webshell-plugin
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 years ago
- A webshell plugin and interactive shell for pentesting a LimeSurvey application.☆13Updated 3 weeks ago
- A python wrapper to run a command on against all users/computers/DCs of a Windows Domain☆28Updated 2 years ago
- A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.☆12Updated 2 years ago
- A script to factorize integers with sagemath and factordb.☆11Updated last year
- Extract all users from an Active Directory domain to an Excel worksheet.☆32Updated 7 months ago
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆22Updated 8 months ago
- A collection of http fuzzing python scripts to fuzz HTTP servers for bugs.☆14Updated last year
- A collection of python scripts to work with Windows Hives.☆15Updated 2 years ago
- Command line tool to fetch, decode and brute-force CodeIgniter session cookies by guessing and bruteforcing secret keys.☆12Updated 8 months ago
- A webshell plugin and interactive shell for pentesting a Moodle instance.☆29Updated 2 years ago
- A list of weird comparison in SQL☆14Updated 2 years ago
- MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)☆16Updated 2 years ago
- The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.☆61Updated 3 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated 3 weeks ago
- A script to enumerate valid usernames based on the requests response times.☆18Updated 2 years ago
- CVE-2022-30780 - lighttpd remote denial of service☆16Updated 8 months ago
- A python tool to parse and describe the contents of a raw ntSecurityDescriptor structure.☆16Updated last month
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆78Updated 7 months ago
- Tool for Active Directory Certificate Services enumeration and abuse☆58Updated this week
- A Python script to parse Fortinet products serial numbers, and detect the associated model and revision.☆13Updated last year
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆13Updated 2 years ago
- A PoC exploit for CVE-2023-43208 - Mirth Connect Remote Code Execution (RCE)☆26Updated 8 months ago
- ☆42Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆47Updated last year
- ☆77Updated last year
- Wolfy AV Bypasser☆27Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆57Updated 5 months ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆78Updated 2 years ago
- Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.☆78Updated 3 weeks ago