Alternatives and similar repositories for EfsPotato-1

Users that are interested in EfsPotato-1 are comparing it to the libraries listed below

• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆84Updated 3 years ago
• Jumbo-WJB / search_rbcd
  Search msDS-AllowedToActOnBehalfOfOtherIdentity
  ☆35Updated 3 years ago
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• 0x3rhy / AddUser-Bof
  Cobalt Strike BOF that Add an admin user
  ☆78Updated 3 years ago
• howmp / iisproxy
  通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
  ☆93Updated last year
• Jumbo-WJB / PTH_Exchange
  If you only have hash, you can still operate exchange
  ☆78Updated 4 years ago
• VMsec / PortBenderEXE
  PortBender修改为exe版本
  ☆29Updated 2 years ago
• crisprss / PetitPotam
  替代PrintBug用于本地提权的新方式，主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …
  ☆149Updated 3 years ago
• crisprss / PrintSpoofer
  PrintSpoofer的反射dll实现，结合Cobalt Strike使用
  ☆89Updated 4 years ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆46Updated 3 years ago
• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆56Updated 2 years ago
• BeichenDream / GodzillaMemoryShellProject.NET
  ☆94Updated 3 years ago
• scareing / cmd2shellcode
  cmd2shellcode
  ☆79Updated 4 years ago
• JDArmy / NO445-lateral-movement
  command execute without 445 port
  ☆52Updated 3 years ago
• AgeloVito / adduserbysamr-bof
  Cobalt Strike BOF that Add a user to localgroup by samr
  ☆132Updated 3 years ago
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆78Updated 2 years ago
• kyxiaxiang / CrackSleeve4.7
  ☆102Updated 3 years ago
• yanghaoi / LaunchSystemCmd
  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。
  ☆33Updated 3 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• uknowsec / CreateService
  创建服务持久化
  ☆108Updated 4 years ago
• 0x3rhy / CallBackDump-CS
  Lsass memory dump.
  ☆55Updated 2 years ago
• evilAdan0s / DumpHash-Helper
  使用Csharp实现自动修改注册表键并强制锁屏，使其可被抓取明文密码。
  ☆30Updated 5 years ago
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆42Updated 2 years ago
• idiotc4t / sharpwmi
  (批量化改造)sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆109Updated 4 years ago
• crisprss / net_memory_webshell
  用来存放平时写的一些net内存马，仅用于练手，需要可以自行修改
  ☆89Updated 3 years ago
• uknowsec / SauronEye-Modify
  在原项目上加上将找到的文件压缩打包上传oss,另外做了部分小修改。
  ☆30Updated 5 years ago
• Ridter / GetMail
  利用NTLM Hash读取Exchange邮件
  ☆58Updated 2 years ago
• mstxq17 / CVE-2021-1675_RDL_LPE
  PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。
  ☆148Updated 4 years ago