Charlie Bromberg
Charlie Bromberg
Same issue as https://github.com/SecureAuthCorp/impacket/issues/1264 The following line is probably wrong: https://github.com/zer1t0/ticket_converter/blob/24114e366663c58453e3b84b879cc5852ae28dcf/ticket_converter.py#L153 I'm proposing the following Pull Request gets merged here as well: https://github.com/SecureAuthCorp/impacket/pull/1265
Flag to pass custom header(s) to server, just like curl Usage examples - `-H "header1:value1` - `-H "header1:value1" -H "header2:value2" -H "header3:value3"` - `-H "header1:value1, header2:value2, header3:value3"` - `-H headers.txt`
We could add an option like `--start-listener` for the `--reverse-shell` group that makes shellerator handle the listener and shell improvement parts. The idea comes from [this PR on Exegol](https://github.com/ShutdownRepo/Exegol/pull/31). PR...
Hey there, this small PR fixes the baseDN calculation for the ldap protocol. Currently, it's based on a split of the value provided for the KDC with the `--kdcHost` argument....
Hey there, I was working on the source code of the ldap protocol (`cme/protocols/ldap.py`) and was wondering why some debug logging is made with `self.logger.info` and why other is made...
This is a **enhancement idea**. I don't have the go skills to implement it myself. ffuf could have an option (`--backup` ?) to fuzz results and look for backups and...
Equivalent to Add/Get-DomainObjectAcl from PowerSploit's PowerView with additional features. This script can be used to read, write, remove, backup, restore ACEs (Access Control Entries) in an object DACL (Discretionary Access...
Added this script to abuse WriteOwner (`ADS_RIGHT_WRITE_OWNER`) access rights. This allows to take ownership of another object, and then edit that object's DACL (with #1291 for example). ## 1. Edit...
Preparing a Pull Request that introduces scripts that allow to exploit the Kerberos sAMAccountName spoofing attacks (CVE-2021-42278 + CVE-2021-42287). This attack chain allows regular users to spoof domain controllers. The...