Lucene search
K

26 matches found

Gitee
Gitee
added 2025/09/14 4:21 p.m.98 views

PrivExchange

This is a proof-of-concept PoC tool for abusing Microsoft Exchange to obtain Domain Admin privileges. The tool, named PrivExchange, requires the Impacket library and can be used to subscribe to push notifications on Exchange Web Services, which will make Exchange connect back to the attacker and...

6.9AI score
Exploits0
Gitee
Gitee
added 2025/09/14 3:58 p.m.234 views

AutoBlue-MS17-010

This is a semi-automated, fully working, no-bs, non-metasploit version of the public exploit code for MS17-010. The exploit is designed to target Windows systems vulnerable to the EternalBlue vulnerability, which is a remote code execution RCE vulnerability in the SMBv1 protocol. The exploit code...

8.5AI score
Exploits0
Gitee
Gitee
added 2025/09/06 11:51 a.m.135 views

Exploit for CVE-2020-1472

!Pythonpython-shield CVE-2020-1472 CVE-2020-1472 - Zero Logon vulnerability Python implementation Description A Python script which uses the Impacket library to test for CVE-2020-1472 - Zerologon vulnerability credits to Secura research. The flaw stems from the Netlogon Remote Protocol, available...

10CVSS8.1AI score0.9438EPSS
Exploits75
Gitee
Gitee
added 2024/03/05 12:41 p.m.42 views

Exploit for CVE-2021-42278

This is a Python script for exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate a Domain Administrator DA from a standard domain user. The script uses the Impacket library to interact with the Active Directory. The script has several components: 1. samtheadmin.py: This is the main script...

8.8CVSS7.3AI score0.94066EPSS
Exploits10
Kitploit
Kitploit
added 2021/08/22 9:30 p.m.44 views

Keimpx - Check For Valid Credentials Across A Network Over SMB

keimpx is an open source tool, released under the Apache License 2.0. It can be used to quickly check for valid credentials across a network over SMB. Credentials can be: Combination of user / plain-text password. Combination of user / NTLM hash. Combination of user / NTLM logon session token. If...

7.7AI score
Exploits0References9
Gitee
Gitee
added 2021/07/25 4:14 p.m.24 views

Exploit for CVE-2020-1472

PoC exploit for CVE-2020-1472 ZeroLogon vulnerability. The target product/service is Windows Domain Controller DC. The vulnerability class/vector is authentication bypass via all-zero challenge. The probable entry point is the Netlogon service, which is accessed via the Impacket library. Notable...

10CVSS7.8AI score0.9438EPSS
Exploits75
Gitee
Gitee
added 2021/07/07 8:29 p.m.12 views

Exploit for CVE-2020-1472

PoC exploit for CVE-2020-1472, a vulnerability in the Windows Netlogon service that allows authentication bypass. The exploit uses the Impacket library to test the vulnerability and attempt to perform a Netlogon authentication bypass. It targets the Netlogon service on a domain controller and sen...

10CVSS7.5AI score0.9438EPSS
Exploits75
Gitee
Gitee
added 2021/06/21 10:41 a.m.4 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

This is a proof-of-concept POC exploit for CVE-2020-0796, a vulnerability in the SMBv3 protocol. The exploit is implemented in Python and uses the Impacket library to interact with the SMB protocol. The exploit targets the SMBv3 protocol's signing requirement, which can be bypassed to allow for...

10CVSS8.1AI score0.94424EPSS
Exploits124
Gitee
Gitee
added 2020/12/08 4:32 p.m.12 views

Exploit for CVE-2020-1472

PoC exploit for CVE-2020-1472, a vulnerability in the Windows Netlogon service that allows for authentication bypass. The exploit uses the Impacket library to test the vulnerability and attempts to perform a Netlogon authentication bypass. The script will immediately terminate when successfully...

10CVSS7.5AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/10/21 9:42 a.m.151 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.9438EPSS
Exploits75
Gitee
Gitee
added 2020/10/10 6:21 p.m.15 views

Exploit for CVE-2020-1472

PoC exploit for CVE-2020-1472, a vulnerability in the Windows Netlogon service that allows for authentication bypass. The exploit uses the Impacket library to test the vulnerability and attempts to perform a Netlogon authentication bypass. The script will immediately terminate when successfully...

10CVSS7.5AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/30 7:45 a.m.172 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/28 6:53 a.m.177 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 7:25 a.m.240 views

Exploit for CVE-2020-1472

!Pythonpython-shield CVE-2020-1472 CVE-2020-1472 - Zero...

10CVSS8.1AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 3:57 a.m.178 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.9438EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/08 8:58 a.m.356 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.2AI score0.9438EPSS
Exploits75
Exploit DB
Exploit DB
added 2017/05/17 12:0 a.m.152 views

Microsoft Windows 8/8.1/2012 R2 (x64) - 'EternalBlue' SMB Remote Code Execution (MS17-010)

!/usr/bin/python from impacket import smb, ntlm from struct import pack import sys import socket ''' EternalBlue exploit for Windows 8 and 2012 by sleepya The exploit might FAIL and CRASH a target system depended on what is overwritten The exploit support only x64 target EDB Note: Shellcode - x64...

7.4AI score
Exploits0
myhack58
myhack58
added 2017/03/19 12:0 a.m.47 views

Analysis of Kerberos constrained delegation SPN security vulnerabilities-vulnerability warning-the black bar safety net

In the past few years, more and more security researchers began to study Kerberos security, eventually found in support of the authentication Protocol of the network environment a lot of interesting attacks. In this post, I will describe my in the Windows Kerberos constrained delegation feature...

7AI score
Exploits0
myhack58
myhack58
added 2017/03/17 12:0 a.m.33 views

Analysis of Kerberos constrained delegation SPN security vulnerabilities-vulnerability warning-the black bar safety net

In the past few years, more and more security researchers began to study Kerberos security, eventually found in support of the authentication Protocol of the network environment a lot of interesting attacks. In this post, I will describe my in the Windows Kerberos constrained delegation feature...

0.2AI score
Exploits0
0day.today
0day.today
added 2016/02/26 12:0 a.m.443 views

Microsoft Windows - NetAPI32.dll Code Execution (Python) (MS08-067) Exploit

Exploit for windows platform in category remote exploits EDB-Note: Source https://raw.githubusercontent.com/ohnozzy/Exploit/master/MS08067.py import struct import time import sys from threading import Thread Thread is imported incase you would like to modify try: from impacket import smb from...

10CVSS9.2AI score0.91803EPSS
Exploits12
Rows per page
Query Builder