Projects in Awesome Lists by mpgn
A curated list of projects in awesome lists by mpgn .
https://github.com/mpgn/backupoperatortoda
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
Last synced: 16 May 2025
https://github.com/mpgn/padding-oracle-attack
:unlock: Padding oracle attack against PKCS7 :unlock:
attack cbc-mode oracle padding padding-error
Last synced: 06 Apr 2025
https://github.com/mpgn/Padding-oracle-attack
:unlock: Padding oracle attack against PKCS7 :unlock:
attack cbc-mode oracle padding padding-error
Last synced: 12 Jul 2025
https://github.com/mpgn/spring-boot-actuator-exploit
Spring Boot Actuator (jolokia) XXE/RCE
Last synced: 09 Apr 2025
https://github.com/mpgn/Spring-Boot-Actuator-Exploit
Spring Boot Actuator (jolokia) XXE/RCE
Last synced: 11 Jul 2025
https://github.com/mpgn/poodle-poc
:poodle: Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 :poodle:
attacker cryptography padding poc poodle python sslv3
Last synced: 09 Apr 2025
https://github.com/mpgn/cve-2019-0192
RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
Last synced: 05 Jul 2025
https://github.com/mpgn/byp-sop
🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️
Last synced: 07 Aug 2025
https://github.com/mpgn/CVE-2019-5418
CVE-2019-5418 - File Content Disclosure on Ruby on Rails
Last synced: 27 Sep 2025
https://github.com/mpgn/cve-2019-5418
CVE-2019-5418 - File Content Disclosure on Ruby on Rails
Last synced: 04 Apr 2025
https://github.com/mpgn/cve-2019-19781
CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit
Last synced: 04 Apr 2025
https://github.com/mpgn/cve-2019-7238
🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻
Last synced: 19 Jun 2025
https://github.com/mpgn/rails-doubletap-rce
RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
Last synced: 04 Apr 2025
https://github.com/mpgn/discord-e2e-encryption
:key: Tampermonkey script that encrypt and decrypt your messages on Discord :key:
discord discord-js encryption end-to-end-encryption greasemonkey tampermonkey
Last synced: 12 Apr 2025
https://github.com/mpgn/heartbleed-poc
:broken_heart: Hearbleed exploit to retrieve sensitive information CVE-2014-0160 :broken_heart:
Last synced: 04 Apr 2025
https://github.com/mpgn/beast-poc
:muscle: Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 :muscle:
beast plaintext-attack python sslv3 tls
Last synced: 11 Oct 2025
https://github.com/mpgn/cve-2018-17246
CVE-2018-17246 - Kibana LFI < 6.4.3 & 5.6.13
Last synced: 09 Apr 2025
https://github.com/mpgn/cve-2019-7609
RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer
Last synced: 09 Apr 2025
https://github.com/mpgn/cve-2019-9580
CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE
Last synced: 09 Apr 2025
https://github.com/mpgn/cve-2019-3799
CVE-2019-3799 - Spring Cloud Config Server: Directory Traversal < 2.1.2, 2.0.4, 1.4.6
Last synced: 09 Apr 2025
https://github.com/mpgn/crime-poc
:hocho: CRIME attack PoC : a compression oracle attacks CVE-2012-4929 :hocho:
compression-algorithm crime oracle
Last synced: 06 Oct 2025
https://github.com/mpgn/CVE-2018-16341
CVE-2018-16341 - Nuxeo Remote Code Execution without authentication using Server Side Template Injection
Last synced: 12 Jul 2025
https://github.com/mpgn/cve-2018-16341
CVE-2018-16341 - Nuxeo Remote Code Execution without authentication using Server Side Template Injection
Last synced: 04 Apr 2025
https://github.com/mpgn/ntlmrelayx-prettyloot
Convert the loot directory of ntlmrelayx into an enum4linux like output
enum4linux impacket ldap ntlmrelayx
Last synced: 04 Apr 2025
https://github.com/mpgn/cve-2018-19276
CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
Last synced: 13 Oct 2025
https://github.com/mpgn/halloffame-root-me.org
:skull: Root-me Hall Of Fame dashboard :skull:
halloffame ranking root-me spectre-css
Last synced: 23 Aug 2025
https://github.com/mpgn/dllinjectexec
:syringe: Dll injection for executable file :syringe:
dll-injection executable windows
Last synced: 04 Apr 2025
https://github.com/mpgn/slanger-rce
RCE in Slanger using deserialization of Ruby objects
Last synced: 11 Aug 2025
https://github.com/mpgn/ropycat
Scripts that allow you to copy/past text into another Windows process to bypass Citrix copy/paste limitation
Last synced: 13 Jun 2025
https://github.com/mpgn/discourse-cookie-token-domain
:cookie: Allow to setup cookie token to authenticate user :cookie:
Last synced: 20 Sep 2025
https://github.com/mpgn/cve-2018-3760
Rails Asset Pipeline Directory Traversal Vulnerability
Last synced: 09 Apr 2025
https://github.com/mpgn/cve-2019-9978
CVE-2019-9978 - RCE on a Wordpress plugin: Social Warfare < 3.5.3
Last synced: 07 Jul 2025
https://github.com/mpgn/cve-2018-11686
CVE-2018-11686 - FlexPaper PHP Publish Service RCE <= 2.3.6
Last synced: 04 Apr 2025
https://github.com/mpgn/copper-jekyll-theme
Copper Jekyll theme - simple and useful
Last synced: 04 Apr 2025
https://github.com/mpgn/dllinjectservice
:syringe: Dll ready to be injected into a service :syringe:
Last synced: 04 Apr 2025
https://github.com/mpgn/ytc-id
:pushpin: Get the YouTube channel ID ! :pushpin:
Last synced: 27 Jun 2025
https://github.com/mpgn/achat-reverse-tcp-exploit
Tested on AChat 0.150 Beta 7 Windows 7/8/10 x86/x64
Last synced: 04 Apr 2025
https://github.com/mpgn/c2-n-hop-with-ssf
https://mpgn.github.io/c2-n-hop-with-ssf/
Last synced: 29 Aug 2025
https://github.com/mpgn/tid-jekyll-theme
TID is a simple and minimalist jekyll theme with tag
jekyll minimalist spectre-css theme
Last synced: 09 Apr 2025