s1lkys Goto Github PK
Name: Silky
Type: User
Bio: Maximilian Barz, OSCP - CRTP
Twitter: S1lky_1337
Location: Germany
Name: Silky
Type: User
Bio: Maximilian Barz, OSCP - CRTP
Twitter: S1lky_1337
Location: Germany
Powershell tool to automate Active Directory enumeration.
A captive portal plugin to phish Fritz!Box network credentials
All about bug websites (bypasses, payloads, and etc)
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
A simple Script which tests for LFI (Local File Inclusion) via Curl
A simple Bash program which bruteorces JPG-Files with Steghide
A little bash script to automaticlly enumerate wordpress Users and Wordpress Vulnerabillities
Porting BlueKeep PoC from @Ekultek to actual exploits
Certipy in Docker
:smiley_cat: Running Hashcat on Google Colab with session backup and restore.
Compile C to Wasm and display an Image in the Browser
Hacky billo implementation of a encrypted windows reverse shell in C#. Nothing special but evaded CheckPoint and Windows Defender out of the Box
CVE-2019-0708 - BlueKeep (RDP)
This is a writeup for CVE-2020-11107 reported by Maximilian Barz
Writeup of CVE-2020-15906
TikiWiki 21.2 allows to edit templates without the use of a CSRF protection.
Macally WIFISD2
If an authenticated user who is able to edit Wordpress PHP code in any kind, clicks a malicious link, PHP code can be edited through XSS in Formidable Forms 4.09.04.
Survey XSS combined with CSRF leads to Admin Account Takeover in Concrete5 8.5.4
Original PoC for CVE-2023-30367
cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs
Modyfied Bluekeep DOS - Obfuscated to prevent abuse
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).
roots after it boots :D
enable / disable TokenPrivilege(s)
CVE-2020-1938 exploit
An Rce Exploit through Maillog poisioning + a local file inclusion for the symfonos machine on vulnhub
Program which converts converts Usernames to its IDs, also including an Instagrambot which automaticly follows and unfollows per Instagram IDs ..... Credits to linux_choice
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.