Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Last update: Dec 22, 2022

Overview

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Known issues

it will not work outside kali , i will update it later on :)

Check out

Owner

Hossam

cyber pharaoh to be

GitHub Repository

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service. This tool can help a digital forensic investigator to know the conte

96 Dec 20, 2022

Scarecrow is a tool written in Python3 allowing you to protect your Python3 scripts.

🕷️ Scarecrow 🕷️ Scarecrow is a tool written in Python3 allowing you to protect your Python3 scripts. It looks for processes with specific names to v

33 Sep 28, 2022

This a simple tool XSS Detection Suite for CTFs games

2 Nov 24, 2021

Vulnerability Exploitation Code Collection Repository

Introduction expbox is an exploit code collection repository List CVE-2021-41349 Exchange XSS PoC = Exchange 2013 update 23 = Exchange 2016 update 2

263 Feb 14, 2022

Compilation of resources and insights that helped me on my journey to data scientist

1.5k Jan 02, 2023

labsecurity is a framework and its use is for ethical hacking and computer security

labsecurity labsecurity is a framework and its use is for ethical hacking and computer security. Warning This tool is only for educational purpose. If

16 Dec 08, 2022

Generates password lists/dictionaries based on keywords written in python3.

dicbyru Introduction Generates password lists/dictionaries based on keywords. It uses the keywords and adds capital letters, numbers and special chara

2 Oct 31, 2022

LinOTP - the open source solution for two factor authentication

462 Jan 02, 2023

It is a very simple XSS simulator based on flask, python.

It is a very simple XSS simulator based on flask, python. The purpose of making this is for teaching the concept of XSS.

3 May 10, 2022

MITMSDR for INDIAN ARMY cybersecurity hackthon

There mainly three things here: MITMSDR spectrum Manual reverse shell MITMSDR Installation Clone the project and run the setup file: ./setup One of th

2 Jul 26, 2022

PreviewGram is for users that wants get a more private experience with the Telegram's Channel.

1 Sep 25, 2022

Signatures and IoCs from public Volexity blog posts.

threat-intel This repository contains IoCs related to Volexity public threat intelligence blog posts. They are organised by year, and within each year

130 Dec 29, 2022

Phoenix Framework is an environment for writing, testing and using exploit code.

Phoenix Framework is an environment for writing, testing and using exploit code. 🖼 Screenshots 🎪 Community PwnWiki Forums 🔑 Licen

42 Aug 09, 2022

Cve-2021-22005-exp

cve-2021-22005-exp 0x01 漏洞简介 2021年9月21日，VMware发布安全公告，公开披露了vCenter Server中的19个安全漏洞，这些漏洞的CVSSv3评分范围为4.3-9.8。其中，最为严重的漏洞为vCenter Server 中的任意文件上传漏洞(CVE-20

146 Dec 31, 2022

🍉一款基于Python-Django的多功能Web安全渗透测试工具，包含漏洞扫描，端口扫描，指纹识别，目录扫描，旁站扫描，域名扫描等功能。

Sec-Tools 项目介绍系统简介本项目命名为Sec-Tools，是一款基于 Python-Django 的在线多功能 Web 应用渗透测试系统，包含漏洞检测、目录识别、端口扫描、指纹识别、域名探测、旁站探测、信息泄露检测等功能。本系统通过旁站探测和域名探测功能对待检测网站进行资产收集，通过端

300 Jan 07, 2023

Bypass ReCaptcha: A Python script for dealing with recaptcha

Bypass ReCaptcha Bypass ReCaptcha is a Python script for dealing with recaptcha.

1 Jan 11, 2022

Security system to prevent Shoulder Surfing Attacks

Surf_Sec Security system to prevent Shoulder Surfing Attacks. REQUIREMENTS: Python 3.6+ XAMPP INSTALLED METHOD TO CONFIGURE PROJECT: Clone the repo to

1 Jan 27, 2022

Python lib to automate basic QFT calculations like Wick-contractions.

QFTools Python lib to automate basic QFT calculations like Wick-contractions. Features Wick contractions for real scalar fields Wick contractions for

2 Aug 21, 2022

A proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228)

CVE-2021-44228 – Log4j RCE Unauthenticated About This is a proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228). This vulnerability

20 Nov 11, 2022

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or CVE from Github by CVE ID.

PocOrExp in Github 聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网注意：只通过通用的CVE号聚合，因此对于MS17-010等Windows编号漏洞以及著名的有绰号的漏洞，还是自己检索一下比较好 Usage python3 exp.py -h usage: ex

567 Dec 30, 2022

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Related tags

Overview

Known issues

Check out

Owner

Hossam

Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service

Scarecrow is a tool written in Python3 allowing you to protect your Python3 scripts.

This a simple tool XSS Detection Suite for CTFs games

Vulnerability Exploitation Code Collection Repository

Compilation of resources and insights that helped me on my journey to data scientist

labsecurity is a framework and its use is for ethical hacking and computer security

Generates password lists/dictionaries based on keywords written in python3.

LinOTP - the open source solution for two factor authentication

It is a very simple XSS simulator based on flask, python.

MITMSDR for INDIAN ARMY cybersecurity hackthon

PreviewGram is for users that wants get a more private experience with the Telegram's Channel.

Signatures and IoCs from public Volexity blog posts.

Phoenix Framework is an environment for writing, testing and using exploit code.

Cve-2021-22005-exp

🍉一款基于Python-Django的多功能Web安全渗透测试工具，包含漏洞扫描，端口扫描，指纹识别，目录扫描，旁站扫描，域名扫描等功能。

Bypass ReCaptcha: A Python script for dealing with recaptcha

Security system to prevent Shoulder Surfing Attacks

Python lib to automate basic QFT calculations like Wick-contractions.

A proof-of-concept exploit for Log4j RCE Unauthenticated (CVE-2021-44228)

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or CVE from Github by CVE ID.