Skip to content
View plur1bu5's full-sized avatar
2 followers · 1 following

Achievements

Achievement: Quickdraw

Achievements

Achievement: Quickdraw

Block or report plur1bu5

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
plur1bu5/README.md
plur1bu5

Blog LinkedIn

whoami

offensive security · AD pentesting · web security · red teaming core member @ Never7 · occasional competitor @ 0xfun (2nd globally) expanding into cloud · k8s · CI/CD security

~/tools
repo description
TrustFull AD trust enumeration & exploitation — cross-forest attacks, child-to-parent escalation
CVE-2024-51482-PoC PoC — blind SQLi in ZoneMinder ≤ 1.37.64
CVE-2025-2945-pgadmin-rce PoC — RCE in pgAdmin 4 via eval() injection
kali-build ansible playbook for kali pentest env
Wordpress-plugin-web-shell wordpress plugin webshell (windows) 
~/writing → plur1bu5.dev

htb active-directory ctf red-team

terminal

GitHub Stats Top Langs

GitHub Streak

snake

Popular repositories Loading

  1. CVE-2024-51482-PoC CVE-2024-51482-PoC Public

    Authenticated time-based blind SQL injection PoC for ZoneMinder CVE-2024-51482 (v1.37.* <= 1.37.64)

    Python 10

  2. TrustFull TrustFull Public

    Active Directory trust enumeration and exploitation tool. Detects cross-domain attacks (Kerberoasting, delegation, foreign ACLs, ..) and implements ExtraSids for parent-child escalation.

    Python 6

  3. Wordpress-plugin-web-shell Wordpress-plugin-web-shell Public

    a wordpress plugin that would give an easy webshell ( windows )

    PHP

  4. kali-build kali-build Public

    Ansible playbook to automate a Kali Linux pentest environment setup.

    Jinja

  5. targetedKerberoast targetedKerberoast Public

    Forked from ShutdownRepo/targetedKerberoast

    Kerberoast with ACL abuse capabilities

    Python

  6. Certipy Certipy Public

    Forked from ly4k/Certipy

    Tool for Active Directory Certificate Services enumeration and abuse

    Python