watchtowrlabs / connectwise-screenconnect_auth-bypass-add-user-poc

Related projects ⓘ

Alternatives and complementary repositories for connectwise-screenconnect_auth-bypass-add-user-poc

• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆88Updated last year
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆43Updated last month
• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆63Updated 7 months ago
• ad0nis / ntlm_relay_gat
  ☆143Updated 8 months ago
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆102Updated 3 weeks ago
• watchtowrlabs / CVE-2024-40711
  Pre-Auth Exploit for CVE-2024-40711
  ☆35Updated 2 months ago
• CyberSecurityUP / Windows-API-for-Red-Team
  ☆55Updated 7 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆70Updated this week
• mertdas / SharpLateral
  Lateral Movement
  ☆119Updated last year
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆113Updated 11 months ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆55Updated last month
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆78Updated 7 months ago
• sinsinology / CVE-2024-29849
  Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
  ☆86Updated 5 months ago
• watchtowrlabs / watchTowr-vs-progress-moveit_CVE-2024-5806
  Exploit for the CVE-2024-5806
  ☆40Updated 4 months ago
• watchtowrlabs / Fortijump-Exploit-CVE-2024-47575
  Fortinet Fortimanager Unauthenticated Remote Code Execution AKA FortiJump CVE-2024-47575
  ☆56Updated last week
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆80Updated 4 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 5 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 6 months ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆58Updated last year
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆20Updated 3 months ago
• dadevel / impacket-zsh-integration
  ZSH integration for Impacket
  ☆59Updated 3 weeks ago
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆90Updated last week
• horizon3ai / CVE-2024-0204
  Authentication Bypass in GoAnywhere MFT
  ☆64Updated 9 months ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆73Updated 4 months ago
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆88Updated 3 weeks ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆78Updated 2 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆133Updated 3 months ago