p0dalirius / Tomcat-webshell-applicationLinks
A webshell application and interactive shell for pentesting Apache Tomcat servers.
☆105Updated 3 months ago
Alternatives and similar repositories for Tomcat-webshell-application
Users that are interested in Tomcat-webshell-application are comparing it to the libraries listed below
Sorting:
- Impacket is a collection of Python classes for working with network protocols.☆72Updated 9 months ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆45Updated 2 years ago
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆127Updated 2 years ago
- Openfire Console Authentication Bypass Vulnerability with RCE plugin☆51Updated last year
- Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...☆22Updated 4 months ago
- ☆34Updated 3 years ago
- Golden collection of weak passwords☆62Updated 5 months ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆89Updated 2 years ago
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆74Updated 8 months ago
- Crackmapexec custom scripts used in my internal pentests.☆24Updated last year
- List of some AD tools I frequently use☆46Updated 4 months ago
- This cheatsheet contains Active Directory (AD) exploitation techniques, showcasing methods used to identify and abuse misconfigurations o…☆40Updated last year
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- CVE-2023-20198 Exploit PoC☆48Updated last year
- ☆49Updated last year
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆113Updated 4 months ago
- Exploits targeting vBulletin.☆76Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆91Updated last year
- Automated exploitation of MSSQL servers at scale☆108Updated last week
- Precompiled executable☆55Updated 3 months ago
- This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file☆36Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆83Updated 3 years ago
- MSSQL Database Attacker tool☆189Updated 2 years ago
- Automatic Tools For Metabase Exploit Known As CVE-2023-38646☆27Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆127Updated last year
- ☆33Updated last year
- PoC for CVE-2022-26809, analisys and considerations are shown in the github.io.☆107Updated 2 years ago
- ☆154Updated 10 months ago
- POC for Veeam Backup and Replication CVE-2023-27532☆63Updated 2 years ago