r0xdeadbeef / CVE-2021-26855
CVE-2021-26855, also known as Proxylogon, is a server-side request forgery (SSRF) vulnerability in Exchange that allows an attacker to send arbitrary HTTP requests and authenticate as the Exchange server.
☆12Updated last year
Alternatives and similar repositories for CVE-2021-26855
Users that are interested in CVE-2021-26855 are comparing it to the libraries listed below
Sorting:
- "Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' l…☆81Updated 3 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆24Updated 3 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆23Updated 4 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- DO NOT RUN THIS.☆47Updated 3 years ago
- Azure pentesting reference for Altered Security Lab☆24Updated 3 years ago
- Log converter from CS log to Ghostwriter CSV☆30Updated 4 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆18Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- I used this to see if an EDR is running in Safe Mode☆36Updated 4 years ago
- Zoom Persistence Aggressor and Handler☆55Updated 4 years ago
- An Ansible role to install cobalt-strike☆16Updated 4 years ago
- ☆23Updated 3 years ago
- A tool for creating proxy dll for hijacking☆42Updated 6 months ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Updated 4 years ago
- PoC for CVE-2021-4034 dubbed pwnkit☆35Updated 3 years ago
- ☆17Updated 4 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- ☆55Updated 3 years ago
- Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…☆13Updated 2 years ago
- juicypotato for win10 > 1803 & win server 2019☆97Updated 4 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆37Updated last year
- Simple C2 over the Trello API☆38Updated 2 years ago
- Finding SSL Blindspots for Red Teams☆32Updated 4 years ago
- Bypass Constrained Language Mode in PowerShell☆28Updated 5 years ago
- Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.☆47Updated 4 years ago
- In progress persistent download/upload/execution tool using Windows BITS.☆43Updated 3 years ago