tinkersec / cve-2020-1350Links
Bash Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2003 up to Windows Server 2019.
☆104Updated 4 years ago
Alternatives and similar repositories for cve-2020-1350
Users that are interested in cve-2020-1350 are comparing it to the libraries listed below
Sorting:
- Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.☆178Updated 2 years ago
- Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurations☆252Updated 2 years ago
- A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system☆203Updated 2 years ago
- Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)☆234Updated 3 years ago
- Web-based check for Windows privesc vulnerabilities☆139Updated 2 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆174Updated 4 years ago
- HoneyPoC: Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Se…☆279Updated 3 years ago
- Red Team C2 Infrastructure built in AWS using Ansible!☆229Updated 4 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆204Updated 4 years ago
- Public Exploits + Extra-curriculum for OSCE Exam Preparation☆76Updated 4 years ago
- Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.☆85Updated 3 years ago
- ☆80Updated 3 years ago
- SonicWall SSL-VPN Exploit☆176Updated 4 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆137Updated 5 years ago
- Enumerate AD through LDAP with a collection of helpfull scripts being bundled☆145Updated last week
- Automating juicy potato local privilege escalation exploit for penetration testers☆143Updated 3 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆217Updated 4 years ago
- Office 365 and Exchange Enumeration☆186Updated 6 years ago
- EagleShell is a high-quality tool that aims to improve your pentest.☆77Updated 4 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering☆210Updated 4 years ago
- ☆293Updated 11 months ago
- Parse NTLM challenge messages over HTTP and SMB☆147Updated 2 years ago
- A Linux enumeration script for Hack The Box☆189Updated 5 years ago
- Exploit to SYSTEM for CVE-2021-21551☆237Updated 4 years ago
- CVE-2018-17246 - Kibana LFI < 6.4.3 & 5.6.13☆63Updated 5 years ago
- A tool to create obfuscated HTA script.☆177Updated 3 years ago
- Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and othe…☆177Updated 2 years ago
- d(ockerp)wn - a docker pwn tool manager☆157Updated 3 years ago
- A curated list of awesome BloodhoundAD resources☆230Updated 2 years ago
- easy-to-use payload hosting☆270Updated 3 years ago