Microsoft SharePoint

SharePoint Exploits: ToolSheel, etc.

SharePoint Security Vulnerability ScannerPentest-Tools.com

Recon - Version

ShareFouine

Navigate into Sharepoint using UNIX like commands

GitHub - OtterHacker/ShareFouineGitHub

ShareFiltrator

Enumerate sensitive files potentially containing credentials

GitHub - Friends-Security/sharefiltrator: tool for enumeration & bulk download of sensitive files found in SharePoint environmentsGitHub

Breaking Down SharePoint Walls: Hunting for Sensitive FilesSecurity Friends' Research Blog

CVE‑2025‑49706 / CVE-2025-53770 - "ToolShell" Vulnerability

CVE‑2025‑49706, a spoofing vulnerability in SharePoint Server, has evolved from medium-severity to real-world weaponization, with a variant (CVE‑2025‑53770) now actively exploited in the wild.

CVE‑2025‑49706 affects:

SharePoint Server 2016
SharePoint Server 2019
SharePoint Server Subscription Edition <16.0.18526.20424

🚨 CVE-2025–49706 — SharePoint Spoofing Vulnerability Under Active ExploitationInfoSec Write-ups

Scanners

GitHub - hazcod/CVE-2025-53770: Scanner for the SharePoint CVE-2025-53770 RCE zero day vulnerability.GitHub

GitHub - ZephrFish/CVE-2025-53770-Scanner: ToolShell scanner - CVE-2025-53770 and detection informationGitHub

Exploit

GitHub - soltanali0/CVE-2025-53770-Exploit: SharePoint WebPart Injection Exploit ToolGitHub

CVE-2024-38094 - MS-SharePoint-July-Patch-RCE-PoC

GitHub - testanull/MS-SharePoint-July-Patch-RCE-PoCGitHub

SharePoint Server 2019

CVE-2023-29357 - Microsoft SharePoint Server Elevation of Privilege Vulnerability

GitHub - Chocapikk/CVE-2023-29357: Microsoft SharePoint Server Elevation of Privilege VulnerabilityGitHub

SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955 PoC

python2 SharePwn_public.py http://target.com

Interesting Book

Interesting Books

Disclaimer: As an Amazon Associate, I earn from qualifying purchases. This helps support this GitBook project at no extra cost to you.

Pentesting Active Directory and Windows-based Infrastructure Enhance your skill set to pentest against real-world Microsoft infrastructure with hands-on exercises and by following attack/detect guidelines with OpSec considerations
Infrastructure Attack Strategies for Ethical Hacking Encompassing both external and internal enumeration techniques, the book delves into attacking routers and services, establishing footholds, privilege escalation, lateral movement, and exploiting databases and Active Directory.
RTFM: Red Team Field Manual v2 A quick reference when there is no time to scour the Internet for that perfect command
Red Team Development and Operations: A practical guide The authors have moved beyond SANS training and use this book to detail red team operations in a practical guide.
Cybersecurity Attacks – Red Team Strategies A practical guide to building a penetration testing program having homefield advantage

Support this Gitbook

I hope it helps you as much as it has helped me. If you can support me in any way, I would deeply appreciate it.

PreviousMicrosoft Office & Outlook NextWindows Exploit

Last updated 1 month ago