soffensive / windowsblindread

Related projects ⓘ

Alternatives and complementary repositories for windowsblindread

• sensepost / UserEnum
  Domain user enumeration tool
  ☆212Updated last year
• BishopFox / pwn-pulse
  Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
  ☆137Updated 4 years ago
• TsukiCTF / Lovely-Potato
  Automating juicy potato local privilege escalation exploit for penetration testers
  ☆138Updated 3 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆197Updated 6 years ago
• Illuminopi / RCEvil.NET
  ☆233Updated 5 years ago
• nopfor / ntlm_challenger
  Parse NTLM challenge messages over HTTP and SMB
  ☆143Updated 2 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆114Updated 9 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆249Updated 3 weeks ago
• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆60Updated 5 years ago
• trickster0 / Enyx
  Enyx SNMP IPv6 Enumeration Tool
  ☆102Updated last year
• HarmJ0y / PowerUp
  This version of PowerUp is now unsupported. See https://github.com/Veil-Framework/PowerTools/tree/master/PowerUp for the most current ver…
  ☆239Updated 7 years ago
• trustedsec / cors-poc
  ☆127Updated 6 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆163Updated 2 years ago
• quickbreach / ExchangeRelayX
  An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.
  ☆301Updated 2 years ago
• Arno0x / NtlmRelayToEWS
  ntlm relay attack to Exchange Web Services
  ☆328Updated 6 years ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆152Updated last year
• RedCursorSecurityConsulting / CVE-2020-0668
  Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
  ☆211Updated 4 years ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆195Updated 6 years ago
• mpgn / CVE-2018-17246
  CVE-2018-17246 - Kibana LFI < 6.4.3 & 5.6.13
  ☆58Updated 5 years ago
• deadjakk / patch-checker
  Web-based check for Windows privesc vulnerabilities
  ☆138Updated last year
• phackt / pentest
  Custom tools and projects about security
  ☆111Updated 3 years ago
• nccgroup / OneLogicalMyth_Shell
  A HTA shell to assist with breakout assessments.
  ☆112Updated 3 years ago
• kmahyyg / mremoteng-decrypt
  mRemoteNG Config File Decrypt
  ☆79Updated 2 years ago
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆182Updated 5 years ago
• preempt / ntlm-scanner
  A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
  ☆201Updated 4 years ago
• monoxgas / FlyingAFalseFlag
  Slides and Code for the BHUSA 2019 talk: Flying a False Flag
  ☆227Updated 5 years ago
• bb00 / zer0dump
  Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
  ☆176Updated last year
• 73696e65 / windows-exploits
  Used for the osce exam preparation
  ☆74Updated 8 years ago
• initstring / lxd_root
  Linux privilege escalation via LXD
  ☆132Updated 4 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆153Updated 5 years ago