Pinned Repositories
apollon
Proof-of-Concept to evade auditd by writing /proc/PID/mem
ColdFusionPwn
Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
daphne
Proof-of-Concept to evade auditd by tampering via ptrace
HandleKatz
PIC lsass dumper using cloned handles
HttpRemotingObjRefLeak
Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
Lastenzug
Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
LethalHTA
Lateral Movement technique using DCOM and HTA
RogueRemotingServer
SysmonEnte
UnmarshalPwn
POC for CVE-2018-0824
CODE WHITE GmbH's Repositories
codewhitesec/HandleKatz
PIC lsass dumper using cloned handles
codewhitesec/LethalHTA
Lateral Movement technique using DCOM and HTA
codewhitesec/Lastenzug
Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
codewhitesec/ColdFusionPwn
Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
codewhitesec/HttpRemotingObjRefLeak
Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
codewhitesec/UnmarshalPwn
POC for CVE-2018-0824
codewhitesec/SysmonEnte
codewhitesec/apollon
Proof-of-Concept to evade auditd by writing /proc/PID/mem
codewhitesec/RogueRemotingServer
codewhitesec/daphne
Proof-of-Concept to evade auditd by tampering via ptrace
codewhitesec/qubes-keepass
rofi based frontend for KeePassXC running on Qubes OS
codewhitesec/groovy-2.4.5-exploit
codewhitesec/NewRemotingTricks
New exploitation tricks for hardened .NET Remoting servers
codewhitesec/sap-p4-java-deserialization-exploit
Exploit for SAP P4 Java Deserialization (http://codewhitesec.blogspot.com/2017/05/sap-customers-make-sure-your-sapjvm-is.html)
codewhitesec/ExploitRemotingService
A tool to exploit .NET Remoting Services
codewhitesec/qubes-yubioath
rofi based frontend for OTP related functionality of yubikey-manager running on Qubes OS
codewhitesec/ysoserial.net
Deserialization payload generator for a variety of .NET formatters