writeups.xyz / Quentin Roland (@Croco_byte)

Title	Vulnerabilities	Programs	Authors
SCCMSecrets.py: Exploiting SCCM Policies Distribution For Credentials Harvesting, Initial Access And Lateral Movement	Active Directory SCCM	Undisclosed	Quentin Roland (@Croco_byte)
Oracle Retail Xstore Suite: Pre-authenticated Path Traversal	Path Traversal Security Code Review	Oracle	Louis Wolfers (@TG91aXMK) Quentin Roland (@Croco_byte)
GPOddity: Exploiting Active Directory GPOs Through NTLM Relaying, And More!	Active Directory Privilege Escalation NTLM Internal Pentest	Undisclosed	Quentin Roland (@Croco_byte)
Persistent PHP Payloads In PNGs: How To Inject PHP Code In An Image – And Keep It There !	Unrestricted File Upload Code Injection RCE	Undisclosed	Quentin Roland (@Croco_byte)

Page 1 of 1