Alexandre ZANNI
89782643c9
SSTI: add some jinja2 examples
2023-01-28 15:29:54 +01:00
Swissky
d0067e13d5
Merge pull request #619 from CravateRouge/patch-2
...
Add PrintNightmare exploit using WebDAV
2023-01-24 09:53:54 +01:00
CravateRouge
a8bef1873a
Add PrintNightmare exploit using WebDAV
2023-01-23 17:06:05 +01:00
Swissky
b75913ca8f
Merge pull request #616 from noraj/patch-1
...
add XXE in Java
2023-01-19 17:14:19 +01:00
Swissky
d23794be0f
Merge pull request #617 from CravateRouge/patch-1
...
Add SSL MITM using OpenSSL
2023-01-19 17:13:44 +01:00
CravateRouge
230f8c3688
Add SSL MITM using OpenSSL
2023-01-19 16:33:11 +01:00
Alexandre ZANNI
563a1b2a1d
add XXE in Java
2023-01-19 10:23:56 +01:00
Swissky
99ff1f94b3
Merge pull request #615 from noraj/patch-url
...
[chore] fix rawsec url
2023-01-12 09:57:27 +01:00
Alexandre ZANNI
442d253936
fix rawsec url
2023-01-11 23:19:26 +01:00
Swissky
1a9bfdd86f
Merge pull request #614 from Darktortue/patch-zerologon
...
Added zerologon authentication relay technique
2023-01-10 21:11:43 +01:00
Darktortue
8caba394d5
Added zerologon authentication relay technique
2023-01-10 11:23:45 +01:00
Swissky
b27ba26af9
Merge pull request #609 from m3dsec/patch-1
...
Update bloodyAD.py when enabling DONT_REQ_PREAUTH for ASREPRoast attack.
2023-01-10 11:06:07 +01:00
Swissky
8e0ce56e5d
Merge pull request #613 from JeremyLARDENOIS/fix-docker-metasploit-install
...
fix: remove docker metasploit installation
2023-01-10 11:05:09 +01:00
Jérémy LARDENOIS
3a97ad3f41
fix: remove docker metasploit installation
2023-01-10 08:51:28 +01:00
Swissky
d4742a9688
SOCKS Compatibility Table + CORS
2023-01-05 01:50:11 +01:00
Swissky
095024f960
Merge pull request #611 from DotDotSlashRepo/master
...
Updated Account takeover due to unicode normalization issue
2023-01-04 17:21:55 +01:00
DotDotSlash
418ff228d0
Formatting changes
...
Formatting changes to Account takeover due to unicode normalization issue
2023-01-04 21:06:36 +05:30
DotDotSlash
b7df4cb6e8
Updated unicode normalization issue
...
Added helpful tools to 'Account takeover due to unicode normalization issue'
2023-01-04 21:03:20 +05:30
somebodyoncetoldme
aa8950a273
Update PostgreSQL Injection.md
...
Switch "column_name" to "table_name".
2023-01-03 21:02:57 -08:00
m3dsec
834c6bca20
Update bloodyAD.py when enabling DONT_REQ_PREAUTH for ASREPRoast attack.
2023-01-01 14:24:57 +01:00
Swissky
5190829ab4
RustHound Examples
2022-12-30 11:01:31 +01:00
Swissky
ec7c363aba
Merge pull request #592 from oddrabbit/patch-1
...
Added in Spring Framework SSTI Detection & Exploitation
2022-12-28 10:55:13 +01:00
Swissky
996c83bb4b
Update README.md
2022-12-28 10:54:48 +01:00
Swissky
4888188ce4
Merge pull request #608 from Aur0ra-m/master
...
Update README.md
2022-12-27 18:26:52 +01:00
Swissky
f318f8bcc0
Update README.md
2022-12-27 18:26:13 +01:00
Aur0ra
29c23ac7fd
Update README.md
2022-12-27 18:30:20 +08:00
Swissky
514ac98dac
SSRF + XSS details + XXE BOM
2022-12-13 22:29:20 +01:00
Swissky
a1c5926f31
Merge pull request #606 from hackprogrammatic/patch-1
...
Update Cloud - AWS Pentest.md
2022-12-08 08:46:05 +01:00
hackprogrammatic
749420fdd2
Update Cloud - AWS Pentest.md
...
spelling errors, update allows users to easily copy/paste
2022-12-07 22:47:41 -06:00
Swissky
6709d543f4
Merge pull request #605 from Techbrunch/patch-12
...
Add GraphQL Threat Matrix
2022-12-06 16:49:42 +01:00
Techbrunch
2f923463a2
Add GraphQL Threat Matrix
2022-12-06 14:24:46 +01:00
Swissky
d67ec2469c
SCCM Shares
2022-12-04 11:38:19 +01:00
Swissky
183876f660
Merge pull request #603 from romisfrag/patch-1
...
Update PHP.md
2022-11-26 17:01:40 +01:00
romisfrag
f8ab0ca3bb
Update PHP.md
...
Fixed the payload (was not working because guess is size 5 instead of 4.
Changed the name of Object to ObjectExample because Object class name is reserved
2022-11-26 14:28:06 +01:00
Swissky
cbb2137f3b
ESC11 - Relay NTLM to ICPR
2022-11-21 10:48:27 +01:00
Swissky
2ed3c03e78
Kubernetes Pentest
2022-11-18 13:00:11 +01:00
Swissky
5966c3a21b
NTDS Reversible Encryption
2022-11-11 14:52:56 +01:00
Swissky
4ca065f8ed
Merge pull request #602 from Kawsay/master
...
Add RubyOnRails HTTP Parameter Pollution
2022-11-08 19:33:10 +01:00
Clément COQUILLE
6f265dedd6
Add RubyOnRails HTTP Parameter Pollution
2022-11-08 19:06:51 +01:00
Swissky
b7f6f72d09
Merge pull request #600 from CravateRouge/patch-6
...
Add application endpoint enumeration
2022-11-07 12:28:04 +01:00
CravateRouge
95e989f5a1
Add application endpoint enumeration
2022-11-07 11:47:47 +01:00
Swissky
e5ea12a3ca
Active Directory Federation Services
2022-11-07 10:10:33 +01:00
Swissky
3e9ef2efbe
ADFS Golden SAML
2022-11-07 10:10:21 +01:00
Swissky
0212830fb4
Merge pull request #599 from CravateRouge/patch-5
...
Fix broken link not compatible with MkDocs
2022-11-06 12:34:56 +01:00
Swissky
eea32c0d15
Merge pull request #597 from xplo1t-sec/master
...
command injection with backslash newline
2022-11-06 12:28:38 +01:00
Swissky
47254d0244
Update README.md
2022-11-06 12:28:26 +01:00
Swissky
2d67b675aa
Merge pull request #598 from CravateRouge/patch-4
...
findstr ignore error and print results in file
2022-11-06 12:19:22 +01:00
CravateRouge
c14392731c
Fix broken link not compatible with MkDocs
2022-11-06 12:12:36 +01:00
CravateRouge
e5a18a72c2
findstr ignore error and print results in file
2022-11-06 11:58:00 +01:00
xplo1t-sec
c1d1c9fcbc
command injection with backslash newline
2022-11-06 14:22:30 +05:30