pimps / pdf-NTLMLeakerLinks
This script implements the Proof of Concept attack from the Checkpoint research "NTLM Credentials Theft via PDF Files"
☆29Updated 7 years ago
Alternatives and similar repositories for pdf-NTLMLeaker
Users that are interested in pdf-NTLMLeaker are comparing it to the libraries listed below
Sorting:
- WordPress - Authenticated XXE (CVE-2021-29447)☆43Updated 4 years ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆54Updated 2 years ago
- 「🚪」Linux Backdoor based on ICMP protocol☆63Updated last year
- ElasticSearch exploit and Pentesting guide for penetration tester☆30Updated 3 years ago
- CVE-2023-20052, information leak vulnerability in the DMG file parser of ClamAV☆27Updated 2 years ago
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- ☆27Updated 2 years ago
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆64Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated 2 years ago
- Binary and CrackMapExec module to impersonate tokens on a windows machine☆46Updated 3 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆48Updated 3 years ago
- POC FortiOS SSL-VPN buffer overflow vulnerability☆27Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆103Updated 2 years ago
- Determine the running software version of a remote F5 BIG-IP management interface.☆69Updated 2 years ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆67Updated 4 years ago
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆47Updated 11 months ago
- Determine the Version Running on the Palo Alto Network Firewall for the Global Protect Portal☆13Updated 5 years ago
- PrintNightmare (CVE-2021-34527) PoC Exploit☆118Updated 3 years ago
- 😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.☆27Updated 2 years ago
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆58Updated 2 years ago
- Youtube as covert-channel - Control systems remotely and execute commands by uploading videos to Youtube☆107Updated 2 years ago
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆60Updated 11 months ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB☆12Updated 2 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 3 years ago
- MOVEit CVE-2023-34362☆139Updated 2 years ago
- Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.☆59Updated last year
- A python3 script searching for secret on swaggerhub☆66Updated 3 years ago
- Zerologon Check and Exploit - Discovered by Tom Tervoort of Secura and expanded on @Dirkjanm's cve-2020-1472 coded example. This tool wil…☆18Updated 3 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆56Updated 2 years ago
- CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect☆29Updated last year