Pinned Repositories
alpc-mmc-uac-bypass
UAC Bypass with mmc via alpc
CIExtender
iptablesAllowCountry
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Primitives
SEPM-EoP
CVE-2018-18368 SEP Manager EoP Exploit
SimpleMimikatzObfuscator
A set of commands to bypass Defender (and some other AVs)
SimpleShellcodeInjector
SimpleShellcodeInjector receives as an argument a shellcode in hex and executes it. It DOES NOT inject the shellcode in a third party application.
SplunkAppShell
Simple Splunk Reverse Shell App
xhrStealer
XHR Posts cookie and body html. PHP receives the data and saves in md format with html highling.
DimopoulosElias's Repositories
DimopoulosElias/SimpleShellcodeInjector
SimpleShellcodeInjector receives as an argument a shellcode in hex and executes it. It DOES NOT inject the shellcode in a third party application.
DimopoulosElias/Primitives
DimopoulosElias/CIExtender
DimopoulosElias/GPOs
DimopoulosElias/ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
DimopoulosElias/akamai-arl-hack
Script to test open Akamai ARL vulnerability.
DimopoulosElias/blog-stuff
DimopoulosElias/Creds
Some usefull Scripts and Executables for Pentest & Forensics
DimopoulosElias/CryptoGotchas
A collection of common (interesting) cryptographic mistakes and learning resources.
DimopoulosElias/CVE-2020-1362
writeup of CVE-2020-1362
DimopoulosElias/CVE-2020-6287
[CVE-2020-6287] SAP NetWeaver AS JAVA (LM Configuration Wizard) Authentication Bypass (Create Simple & Administrator Java User)
DimopoulosElias/DNNExtensionShell
DimopoulosElias/dref
DNS Rebinding Exploitation Framework
DimopoulosElias/FileTest
Source code for File Test - Interactive File System Test Tool
DimopoulosElias/HiveNightmare
Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
DimopoulosElias/mySapAdventures
A quick methodology on testing / hacking SAP Applications for n00bz and bug bounty hunters
DimopoulosElias/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
DimopoulosElias/OSCP-note
list of useful commands, shells and notes related to OSCP
DimopoulosElias/ppmap
A scanner/exploitation tool written in GO, which leverages Prototype Pollution to XSS by exploiting known gadgets.
DimopoulosElias/publications
Coinspect Publications: audit reports and research.
DimopoulosElias/PublicReports
DimopoulosElias/qsreplace
Accept URLs on stdin, replace all query string values with a user-supplied value
DimopoulosElias/RemotePotato0
Just another "Won't Fix" Windows Privilege Escalation from User to Domain Admin.
DimopoulosElias/SAP_EEM_CVE-2020-6207
PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)
DimopoulosElias/SAP_GW_RCE_exploit
SAP Gateway RCE exploits
DimopoulosElias/SAP_PT
DimopoulosElias/SAP_RECON
PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
DimopoulosElias/SeeYouCM-Thief
DimopoulosElias/sqlmap
Automatic SQL injection and database takeover tool
DimopoulosElias/TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!