BreachAssume's repositories
SimpleHTTPServerWithUpload
Simple HTTP Server With Upload written in Python 3
ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
CVE-2023-23752
Perform With Mass Exploiter In Joomla 4.2.8.
CRTE-Notes
Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.
CRTP-Notes
Study materials for the Certified Red Team Pentesting (CRTP) exam, covering essential concepts in red teaming and penetration testing
Certify
Active Directory certificate abuse.
Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
Seth
Perform a MitM attack and extract clear text credentials from RDP connections
CVE-2022-33679
One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
CVE-2022-0543
CVE-2022-0543_RCE,Redis Lua沙盒绕过 命令执行
ssrf_vul
国光师傅的SSRF靶场docker环境
forest-trust-tools
Proof-of-concept tools for my AD Forest trust research
CVE-2020-1472
PoC for Zerologon - all research credits go to Tom Tervoort of Secura
Bad-Pdf
Steal Net-NTLM Hash using Bad-PDF
Redis-Server-Exploit
This will give you shell access on the target system if redis server is not configured properly and faced on the internet without any authentication
SharpDoor
SharpDoor is alternative RDPWrap written in C# to allowed multiple RDP (Remote Desktop) sessions by patching termsrv.dll file.
RedisModules-ExecuteCommand
Tools, utilities and scripts to help you write redis modules!
gitlab-SSRF-redis-RCE
GitLab 11.4.7 SSRF配合redis远程执行代码