Commit graph

1430 commits

Author SHA1 Message Date
Swissky
dfe830d183 RODC - Read Only Domain Controller Compromise 2022-01-04 21:11:26 +01:00
Swissky
f2a2c6d6ce
Merge pull request #472 from astroicers/patch-1
Update MySQL Injection.md
2022-01-04 09:07:57 +01:00
astroicers
119ae90db6
Update MySQL Injection.md
fix line 426
2022-01-04 14:28:17 +08:00
Swissky
b5df6e1447 ESC6 - EDITF_ATTRIBUTESUBJECTALTNAME2 + Golden Certificate 2022-01-01 20:42:58 +01:00
Swissky
c5b49ec497
Merge pull request #471 from jenaye/patch-1
[Add] - php8 to extensions.lst
2022-01-01 13:20:06 +01:00
enaylal
d037335a4a add file php8 2022-01-01 11:48:07 +01:00
Houziaux Mike
5b131ec479
Update extensions.lst 2022-01-01 11:43:58 +01:00
Swissky
c9ef8f7f49 Graftcp Cheatsheet 2021-12-29 18:16:26 +01:00
Swissky
8411a0640d ESC4 - Access Control Vulnerabilities 2021-12-29 15:00:22 +01:00
Swissky
27768783ff Merge branch 'master' of https://github.com/swisskyrepo/PayloadsAllTheThings 2021-12-29 14:52:20 +01:00
Swissky
e3fb516747 MAQ + WEBDAV 2021-12-29 14:48:42 +01:00
Swissky
d8dd64e8e3
Merge pull request #470 from noraj/patch-1
update PowerGPOAbuse task command
2021-12-22 16:22:46 +01:00
Alexandre ZANNI
a430cfcc4e
update PowerGPOAbuse task command 2021-12-22 16:09:07 +01:00
Swissky
210a2b3081
Merge pull request #468 from Zeecka/MySQL-Error-Based-Payload
Add NAME_CONST for MySQL Error based injection
2021-12-16 13:38:45 +01:00
Alex G
a568270b15
Add NAME_CONST for MySQL Error based injection 2021-12-16 12:11:25 +01:00
Swissky
0d6d6049ce AD + Log4shell + Windows Startup 2021-12-16 09:52:51 +01:00
Swissky
31c8a263c3
Merge pull request #467 from gitmalet/patch-1
Update SQL Injection/SQLite Injection.md
2021-12-14 22:09:26 +01:00
malet
4ab2649317
Fixing "RCE - Attach Database" Payload
The old payload doesn't work for many cases as the `php` in `<?php` is missing.
2021-12-14 19:54:41 +01:00
Swissky
5714b9c9d7 samAccountName spoofing + Java RMI 2021-12-13 20:42:31 +01:00
Swissky
10974722b1 BloodHound Custom Queries + MSSQL CLR 2021-12-12 23:04:35 +01:00
Swissky
19c7d1c9e8
Merge pull request #412 from A1vinSmith/master
Replace the web.config with the far better version web.web.config
2021-12-08 21:53:34 +01:00
Swissky
5974773387
Merge pull request #464 from BrianStadnicki/master
SQLite Injection add extract database structure
2021-12-07 09:30:15 +01:00
Brian Stadnicki
03427da534 SQLite Injection add extract database structure 2021-12-07 06:51:27 +00:00
Eduardo Barbosa (an4kein)
51ac02d354
Update README.md
Find open buckets: https://buckets.grayhatwarfare.com/
2021-11-23 14:04:53 -03:00
idealphase
b14f35be86
Merge branch 'swisskyrepo:master' into master 2021-11-22 12:44:38 +07:00
Swissky
ccc1186997
Merge pull request #461 from CravateRouge/master
Add alternatives for AD ACL abuse from Linux
2021-11-15 17:46:39 +01:00
CravateRouge
8da5f36f85
Add alternatives for AD ACL abuse from Linux 2021-11-15 17:36:05 +01:00
idealphase
e9eac5ca59
Update README.md 2021-11-10 22:40:40 +07:00
idealphase
6c7df7dc4e
Update README.md
Add Bypass dot filter
2021-11-10 22:38:02 +07:00
Swissky
7647407266
Merge pull request #458 from Techbrunch/patch-10
Replace xip.io by nip.io
2021-11-09 13:57:22 +01:00
Swissky
21b3a0630f
Update README.md 2021-11-09 13:57:09 +01:00
Techbrunch
a614525b70
Replace xip.io by nip.io
xip.io appears to be dead
2021-11-09 11:15:44 +01:00
Swissky
3366f5eaac
Merge pull request #445 from NirLevy98/reverse_shell_delete-unused-imports
Delete unused import
2021-11-07 21:16:37 +01:00
Swissky
a6eac592e1
Merge pull request #457 from noraj/patch-1
NoSQLi: add POST with urlencoded body
2021-11-07 21:16:06 +01:00
Alexandre ZANNI
e0f851e6e9
NoSQLi: add POST with urlencoded body 2021-11-07 17:49:50 +01:00
Swissky
7d9dd6806e Powershell Cheatsheet 2021-11-06 19:14:47 +01:00
Swissky
6ff9a71237
Merge pull request #456 from DanielGrunberger/master
Add kubescape to kubernetes tools
2021-11-02 12:26:23 +01:00
DanielGrunberger
fb4775ce41
Add kubescape to kubernetes tools 2021-11-01 23:08:04 +02:00
Swissky
2daebdddff
Merge pull request #455 from h3xstream/master
SQL injection various additions
2021-11-01 10:38:44 +01:00
Philippe Arteau
4169e5d603
informa4on_schema => information_schema
(Copy-paste error)
2021-10-31 23:33:58 -04:00
Philippe Arteau
6c5e790234
SQLi: Whitespace alternatives + WAF Bypass 2021-10-31 23:25:08 -04:00
Swissky
1c8067a150 Relaying with WebDav Trick + Shadow Credential 2021-10-30 21:04:23 +02:00
Swissky
9d0efb90ea
Merge pull request #454 from seadog007/patch-1
Fixed typo
2021-10-30 11:04:18 +02:00
Swissky
c62fd81dad
Merge pull request #453 from h3xstream/master
Few filename fixes to allow Windows checkout
2021-10-30 11:03:57 +02:00
Li-Heng Yu
b223c66689
Fixed typo 2021-10-30 11:44:33 +08:00
Philippe Arteau
9d30f792d4
Remove filename with special characters.
The filename are already covered in `XSS Injection/README.md`
2021-10-29 12:56:55 -04:00
Philippe Arteau
16986febde
Remove filename with special characters.
The filename are already covered in `XSS Injection/README.md`
2021-10-29 12:56:41 -04:00
Philippe Arteau
7443da045a
Remove filename with special characters.
The filename are already covered in `XSS Injection/README.md`
2021-10-29 12:56:25 -04:00
Philippe Arteau
17e2833f1d Rename file with less than symbol. 2021-10-29 12:26:45 -04:00
Swissky
e9c8953249
Merge pull request #452 from llamasoft/patch-1
Update Kubernetes readme.md
2021-10-29 10:04:57 +02:00