GitHub - cube0x0/noPac: CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

2 years ago

source link: https://github.com/cube0x0/noPac
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

README.md

noPac

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter. Yet another low effort domain user to domain admin exploit.

If a Domain Controller is vulnerable it will return a TGT without a PAC, all eyes on small size tickets.

Mitigation

Patch your Domain Controllers!

Credits

Charlie Clark for his Rubeus fork and Kevin Robertson for SharpMad

Recommend

GitHub - hillu/local-log4j-vuln-scanner: Simple local scanner for vulnerable log...
GitHub - PKUFlyingPig/pku-cs-self-learning: 计算机自学指南
除了摸鱼聊天，VS Code 甚至能写代码！
GitHub - NCSC-NL/log4shell: Operational information regarding the vulnerability...
科兴疫苗“扎心”短片，意外的有些暖？
GitHub - leonjza/log4jpwn: log4j rce test environment and poc
MAGNA全球广告预测 | 全球广告市场再创新高，超越疫情前水平
GitHub - WazeHell/sam-the-admin: Exploiting CVE-2021-42278 and CVE-2021-42287 to...
Increase Repeat Purchases with These 5 Easy Tips
【实用干货】商家运营-如何做好商家分层？

About Joyk

Aggregate valuable and interesting links.
Joyk means Joy of geeK