sdcampbell / phpLFI
Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via includes to download additional source code files.
☆12Updated 2 years ago
Alternatives and similar repositories for phpLFI:
Users that are interested in phpLFI are comparing it to the libraries listed below
- Right-To-Left Override POC☆34Updated 2 years ago
- Modified version of PEAS client for offensive operations☆38Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- ☆16Updated 4 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- ☆23Updated 2 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆31Updated 2 years ago
- Execute Mimikatz with different technique☆50Updated 3 years ago
- ☆26Updated 2 years ago
- load dumped csharp binaries as assemblies and launch them in memory☆26Updated 11 months ago
- ☆16Updated 9 months ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆30Updated 10 months ago
- Post-exploitation tool for attacking Active Directory domain controllers☆17Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- c# reverse shell poc☆26Updated 6 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆20Updated 2 years ago
- IOXIDResolver from AirBus Security/PingCastle☆46Updated 4 years ago
- ☆15Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆26Updated 4 years ago
- ☆19Updated 4 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆35Updated last year
- Active Directory ACL exploitation with BloodHound☆12Updated 3 years ago
- A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)☆14Updated last year