nyxgeek/exploits

my public exploit code

exploits and CVE listing

my public exploit code

Time-Based User Enumeration in Skype for Business 2013

• Time-based user enumeration via web logon form.
• No CVE issued.
• https://seclists.org/bugtraq/2016/Jun/73
• https://github.com/nyxgeek/lyncsmash

CVE-2017-8550 - Microsoft Skype for Business 2016 (aka Lync)

• https://www.exploit-db.com/exploits/42316
• https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2017-8550
• POC: https://www.youtube.com/watch?v=oGcGVDM7fuk

CVE-2018-8474 - Microsoft Lync 2011 for Mac

• https://www.exploit-db.com/exploits/45936
• https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2018-8474
• POC: https://www.youtube.com/watch?v=7Tk1N5cilZg

CVE-2020-5774 - Tenable Nessus

• https://www.tenable.com/security/tns-2020-06

GraphNinja - Invisible Password Spraying via Microsoft Graph

• For nearly a year (possibly much longer) there was a simple bypass to avoid logging authentication attempts
• No CVE issued. Considered "Low" severity by MS
• https://trustedsec.com/blog/full-disclosure-a-look-at-a-recently-patched-microsoft-graph-logging-bypass-graphninja
• https://github.com/nyxgeek/graphninja