France

mpgn

Elite
@mpgn

̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿

ntlmrelayx-prettyloot. Convert the loot directory of ntlmrelayx into an enum4linux like output

22

DllInjectExec. :syringe: Dll injection for executable file :syringe:

17

CVE-2018-19276. CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE

16

HallOfFame-Root-me.org. :skull: Root-me Hall Of Fame dashboard :skull:

14

Slanger-RCE. RCE in Slanger using deserialization of Ruby objects

11

The-Hacker-Recipes. This project is aimed at freely providing technical guides on various hacking topics: Active Directory services, web services, servers, intelligence gathering, physical intrusion, phishing, mobile apps, iot, social engineering, etc.

10

ropycat. Scripts that allow you to copy/past text into another Windows process to bypass Citrix copy/paste limitation

10

discourse-cookie-token-domain. :cookie: Allow to setup cookie token to authenticate user :cookie:

8

CVE-2018-3760. Rails Asset Pipeline Directory Traversal Vulnerability

8

CVE-2019-9978. CVE-2019-9978 - RCE on a Wordpress plugin: Social Warfare < 3.5.3

8

ShareP0wn. ShareP0wn

6

CVE-2018-11686. CVE-2018-11686 - FlexPaper PHP Publish Service RCE <= 2.3.6

6

AChat-Reverse-TCP-Exploit. Tested on AChat 0.150 Beta 7 Windows 7/8/10 x86/x64

5

copper-jekyll-theme. Copper Jekyll theme - simple and useful

5

DllInjectService. :syringe: Dll ready to be injected into a service :syringe:

5

YTC-ID. :pushpin: Get the YouTube channel ID ! :pushpin:

4

docker_dashboard. Python

4

InternalAllTheThings. Active Directory and Internal Pentest Cheatsheets

4

PayloadsAllTheThings. A list of useful payloads and bypass for Web Application Security and Pentest/CTF

3

pywerview. A (partial) Python3 rewriting of PowerSploit's PowerView

2

impacket. Impacket is a collection of Python classes for working with network protocols.

2

impacket-cme. Python

2

BloodHound. Six Degrees of Domain Admin

1

Invoke-MetasploitPayload. Powershell script to download and kick off Metasploit payloads. Relies on the exploit/multi/scripts/web_delivery metasploit module.

1

pingcastle. PingCastle - Get Active Directory Security at 80% in 20% of the time

1

Invoke-Vnc. Powershell VNC injector

1

Guardian. A simple script that watch for unusual tcp/http/ssh activity and ban ip via routing

1

dploot. DPAPI looting remotely in Python

1

Enum4LinuxPy. Everyone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.

1

Exegol-images. Docker images of the Exegol project

1

SharpGPOAbuse. SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by that GPO.

1

serviceDetector. Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.

1

PingCastle-Notify. Send the result of a PingCastle scan into Slack and highlight the rule diff between two scans

1

swindle. Swindle is a project for YouTube Network

1
34
Apply