Thiago Oliveira's repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
adPEAS
Powershell tool to automate Active Directory enumeration.
CVE-2021-1675
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
CVE-2021-1676
Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
CVE-2021-22986
CVE-2021-22986 & F5 BIG-IP RCE
CVE-2022-41040-metasploit-ProxyNotShell
the metasploit script(POC) about CVE-2022-41040. Microsoft Exchange are vulnerable to a server-side request forgery (SSRF) attack. An authenticated attacker can use the vulnerability to elevate privileges.
Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
gpp-decrypt
Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.
MS17-010
MS17-010
NessusReportMerger
Merges multiple .nessus files into one file.
OffensiveCloud
Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
OSCP-Buffer-Overflow
OSCP Buffer Overflow cheat sheet
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Pentest-Cheat-Sheets
A collection of snippets of codes and commands to make your life easier!
PetitPotam
Python implementation for PetitPotam
ProxyShell
ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)
Proxyshell-Scanner
nuclei scanner for proxyshell ( CVE-2021-34473 )
PSByPassCLM
Bypass for PowerShell Constrained Language Mode
Random-PowerShell-Work
Random PowerShell Work
sam-the-admin
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user