xbz0n / AspXVenom
AspXVenom automates the process of generating encoded shellcode and embedding it into ASPX webshells, providing a smooth workflow for penetration testers during security assessments. The tool is specifically designed for testing ASPX-enabled web servers and .NET environments.
☆12Updated last week
Alternatives and similar repositories for AspXVenom:
Users that are interested in AspXVenom are comparing it to the libraries listed below
- ☆54Updated 4 months ago
- ☆52Updated last year
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆33Updated last month
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆14Updated 8 months ago
- This is a CS project that will encrypt shell code from msfvenom using AES☆22Updated 3 years ago
- A small red team course☆36Updated last year
- Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.☆11Updated 11 months ago
- Just some random small tools for dealing with asp.net Forms Authentication Cookies☆23Updated 3 years ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆23Updated last month
- Right-To-Left Override POC☆34Updated 3 years ago
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆46Updated last month
- RCE PoC for Empire C2 framework <5.9.3☆26Updated last year
- Items related to the RedELK workshop given at security conferences☆28Updated last year
- Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082☆25Updated 2 years ago
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 7 months ago
- OSED Practice binary☆24Updated last year
- This repository presents a proof-of-concept of CVE-2023-22527☆12Updated last year
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆36Updated 2 years ago
- exfiltration/infiltration toolkit☆23Updated last year
- ☆9Updated 4 months ago
- A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.☆22Updated last year
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆20Updated 2 years ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 5 months ago
- Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"☆26Updated 2 years ago
- CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…☆22Updated 2 years ago
- ☆38Updated last month
- Notes about the YouTube playlist: Red Team Operations with Cobalt Strike (2019)☆19Updated 4 years ago
- ManageEngine ADManager Command Injection☆11Updated last year
- CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability☆37Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago