Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-33073 PoC — Windows SMB Client Elevation of Privilege Vulnerability

Source
https://github.com/obscura-cert/CVE-2025-33073
Associated Vulnerability
Title:Windows SMB Client Elevation of Privilege Vulnerability (CVE-2025-33073)
Description:Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.
Readme
# Obscura$ DNS Relay Injector + NTLM Coercion Tool

A stealthy proof-of-concept that chains DNS injection, NTLM relay, and RPC-based coercion to test authentication relay paths in Windows Active Directory environments.

> ⚠️ **DISCLAIMER: For authorized security testing and educational use only.**  
> ❌ Unauthorized use is strictly prohibited. The author takes no responsibility for misuse.

---

## 🔧 Features

- Injects DNS `A` records via `samba-tool`
- Verifies DNS record propagation
- Launches NTLM relay listener using `impacket-ntlmrelayx`
- Triggers forced authentication via `rpcping` (MS-RPRN coercion)
File Snapshot

 [4.0K]  /data/pocs/067a8c721729fe97495589e3152d79ac4a34aa3e
├── [1.0K]  LICENSE
├── [2.9K]  main.py
└── [ 625]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →