safebuffer / exchange-cves-scanner

Related projects ⓘ

Alternatives and complementary repositories for exchange-cves-scanner

• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆31Updated 2 years ago
• AlteredSecurity / CVE-2021-38647
  CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD
  ☆68Updated 3 years ago
• Chocapikk / CVE-2022-22954
  Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960
  ☆2Updated 2 years ago
• blurbdust / ldd2bh
  Convert ldapdomaindump to Bloodhound
  ☆77Updated 11 months ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆68Updated 2 years ago
• kljunowsky / CVE-2022-42889-text4shell
  Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
  ☆54Updated 10 months ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• CuckooEXE / PopCalc
  DLL to open up calc.exe to demonstrate that you injected DLLs
  ☆23Updated 3 years ago
• iomoath / PyExchangePasswordSpray
  Microsoft Exchange password spray tool with proxy support.
  ☆40Updated 3 years ago
• koparmalbaris / NTLM-Dementor
  Get all NetNTLM Hashes via Different zero-click Methodologies from LLMNR Poisoning
  ☆16Updated 2 years ago
• OtterHacker / Cerbere
  ☆46Updated last year
• surajpkhetani / Active-Directory-Permission-Abuse
  ☆12Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• mertdas / SharpLDAP
  SharpLDAP is a tool written in C# that aims to do enumeration via LDAP queries
  ☆0Updated last year
• GoSecure / ldap-scanner
  Checks for signature requirements over LDAP
  ☆92Updated 2 years ago
• sdcampbell / phpLFI
  Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…
  ☆12Updated 2 years ago
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆30Updated last year
• ClickCyber / cve-2022-42889
  cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…
  ☆37Updated 2 years ago
• ZarvisD / Azure-AD
  Azure pentesting reference for Altered Security Lab
  ☆24Updated 2 years ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆38Updated last year
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆42Updated 2 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆79Updated 11 months ago
• EvilEnigma / OSEP-Study
  A repository of tools developed while studying for OSEP. The contents here are not part of courseware but some tools, i wrote as an exten…
  ☆0Updated 5 months ago
• bitsadmin / dir2json
  Tool for efficient directory enumeration
  ☆55Updated last month
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆47Updated 2 years ago
• numanturle / CVE-2022-41040
  CVE-2022-41040 nuclei template
  ☆18Updated 2 years ago