sdcampbell / phpLFI
Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via includes to download additional source code files.
☆13Updated 2 years ago
Alternatives and similar repositories for phpLFI:
Users that are interested in phpLFI are comparing it to the libraries listed below
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- A script used to query the dehashed API and filter for more useful results☆15Updated 3 years ago
- ☆17Updated 4 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- ☆19Updated last year
- ☆14Updated 3 years ago
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV☆26Updated 2 years ago
- ☆18Updated 4 years ago
- Core bypass Windows Defender and execute any binary converted to shellcode☆43Updated 3 years ago
- Right-To-Left Override POC☆34Updated 3 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆25Updated 4 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- OSED Practice binary☆24Updated last year
- ☆19Updated 4 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆37Updated last year
- ☆26Updated 2 years ago
- Run PowerShell command without invoking powershell.exe☆35Updated 3 years ago
- Source Code Management Attack Toolkit☆12Updated 2 years ago
- C# .Net 5.0 project to build BOF (Beacon Object Files) in mass☆28Updated last year
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- ☆48Updated 2 years ago
- Nmap script to check vulnerability CVE-2021-21972☆28Updated 4 years ago
- ☆35Updated 4 years ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆11Updated 4 years ago
- FireProx written in Go☆19Updated last year