Rémi GASCOU (Podalirius)'s repositories
LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
webapp-wordlists
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
FindUncommonShares
FindUncommonShares is a Python script allowing to quickly find uncommon shares in vast Windows Domains, and filter by READ or WRITE accesses.
ipsourcebypass
This Python script can be used to bypass IP source restrictions using HTTP headers.
ExtractBitlockerKeys
A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
CVE-2022-21907-http.sys
Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
CVE-2021-43008-AdminerRead
Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability
ldapconsole
The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
p0dalirius
Front page README of my GitHub profile
DomainUsersToXLSX
Extract all users from an Active Directory domain to an Excel worksheet.
AccountShadowTakeover
A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
CVE-2022-30780-lighttpd-denial-of-service
CVE-2022-30780 - lighttpd remote denial of service
CodeIgniter-session-unsign
Command line tool to fetch, decode and brute-force CodeIgniter session cookies by guessing and bruteforcing secret keys.
DescribeNTSecurityDescriptor
A python tool to parse and describe the contents of a raw ntSecurityDescriptor structure.
Joomla-1.6-1.7-2.5-Privilege-Escalation-Vulnerability
A Python script to create an administrator account on Joomla! 1.6/1.7/2.5 using a privilege escalation vulnerability
DescribeSDDL
A python tool to parse and describe the SDDL string.
linux-kernels
List of linux kernel versions and download links in JSON
streamableDownloader
A simple python script to download videos hosted on streamable from their link
SymfonyDumpSource
A python script to automatically dump files and source code of a Symfony server in debug mode.
UsersWithPwdLastSetOlderThan
Extract all users from an Active Directory domain with password last set older than X days to an Excel worksheet.
CVE-2020-8813-Cacti-RCE-in-graph_realtime
CVE-2020-8813 - RCE through graph_realtime.php in Cacti 1.2.8