mpgn's repositories
BackupOperatorToDA
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
Padding-oracle-attack
:unlock: Padding oracle attack against PKCS7 :unlock:
poodle-PoC
:poodle: Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 :poodle:
CVE-2019-5418
CVE-2019-5418 - File Content Disclosure on Ruby on Rails
Rails-doubletap-RCE
RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
astudiaeth
Master CSI
HallOfFame-Root-me.org
:skull: Root-me Hall Of Fame dashboard :skull:
discourse-cookie-token-domain
:cookie: Allow to setup cookie token to authenticate user :cookie:
The-Hacker-Recipes
This project is aimed at freely providing technical guides on various hacking topics: Active Directory services, web services, servers, intelligence gathering, physical intrusion, phishing, mobile apps, iot, social engineering, etc.
InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
BloodHound
Six Degrees of Domain Admin
Exegol-images
Docker images of the Exegol project
PingCastle-Notify
Send the result of a PingCastle scan into Slack and highlight the rule diff between two scans
serviceDetector
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
c2-n-hop-with-ssf
https://mpgn.github.io/c2-n-hop-with-ssf/
pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time