treddis / dotdotfarm
Fast Path Traversal exploitation tool
☆21Updated 11 months ago
Alternatives and similar repositories for dotdotfarm:
Users that are interested in dotdotfarm are comparing it to the libraries listed below
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- ☆34Updated last year
- A Moodle Scanner☆39Updated 4 months ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated 2 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Tools used for Pentesting☆22Updated last year
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆38Updated last year
- This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risk…☆29Updated last year
- A small executable to trick a user to authenticate using code matching MFA☆69Updated last year
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆22Updated 4 months ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆16Updated 9 months ago
- ☆26Updated 2 years ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Updated last year
- Template Nuclei SSTI☆29Updated last year
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- A Red Teaming tool focused on profiling the target.☆26Updated 9 months ago
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆50Updated 5 months ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated last year
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- exfiltration/infiltration toolkit☆23Updated last year
- Burp Suite Extension for inserting a magic byte into responder's request☆23Updated last year
- Top 400 passwords as per HaveIBeenPwned☆21Updated 5 months ago
- Azure Service Subdomain Enumeration☆56Updated 6 months ago
- ☆14Updated last year
- quick and dirty proof-of-concept to hide shells in images☆49Updated 8 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆30Updated last year
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆39Updated last year
- Cobalt Strike BOFS☆15Updated last year