sdcampbell / phpLFI
Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via includes to download additional source code files.
☆12Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for phpLFI
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- Execute Mimikatz with different technique☆50Updated 3 years ago
- Right-To-Left Override POC☆34Updated 2 years ago
- Modified version of PEAS client for offensive operations☆38Updated last year
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- ☆16Updated 3 years ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆20Updated 2 years ago
- ☆15Updated 8 months ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆30Updated 2 years ago
- ☆26Updated 2 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- Kudzu is a Go C2 platform with an emphasis on extensibility.☆10Updated 3 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- ☆35Updated 4 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆31Updated 3 years ago
- ☆23Updated 2 years ago
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV☆26Updated 2 years ago
- ShootCutMe an .LNK file creator tool for redteamer☆14Updated last month
- OSED Practice binary☆24Updated 11 months ago
- Convert ldapdomaindump to Bloodhound☆77Updated 11 months ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆30Updated 8 months ago
- A little implant which SSH's back with a shell☆36Updated 2 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆47Updated 2 years ago
- c# reverse shell poc☆26Updated 6 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆34Updated last year