Alternatives and similar repositories for AddUser-Bof

Users that are interested in AddUser-Bof are comparing it to the libraries listed below

• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆78Updated 2 years ago
• AgeloVito / adduserbysamr-bof
  Cobalt Strike BOF that Add a user to localgroup by samr
  ☆134Updated 3 years ago
• JDArmy / NO445-lateral-movement
  command execute without 445 port
  ☆57Updated 3 years ago
• Jumbo-WJB / PTH_Exchange
  If you only have hash, you can still operate exchange
  ☆78Updated 4 years ago
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆43Updated 2 years ago
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• m1ddl3w4r3 / ExecRemoteNET
  Execute Remote Assembly with args passing and with AMSI and ETW patching .
  ☆34Updated 6 months ago
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• P0x00 / ASPX_Bonanza
  ASPX ShellCode Loader
  ☆54Updated 2 years ago
• StarfireLab / BrowserPivot
  ☆31Updated 2 years ago
• baiyies / ScreenshotBOFPlus
  Take a screenshot without injection for Cobalt Strike
  ☆202Updated 2 years ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆46Updated 4 years ago
• Octoberfest7 / KillDefender_BOF
  Beacon Object File implementation of pwn1sher's KillDefender
  ☆67Updated 3 years ago
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year
• yzddmr6 / SharpAlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks Rewrite In C#
  ☆90Updated 2 years ago
• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆84Updated 3 years ago
• yanghaoi / LaunchSystemCmd
  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。
  ☆33Updated 3 years ago
• BeichenDream / GodzillaMemoryShellProject.NET
  ☆95Updated 3 years ago
• 0x3rhy / CallBackDump-CS
  Lsass memory dump.
  ☆54Updated 2 years ago
• 0neAtSec / EfsPotato-1
  MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability
  ☆19Updated 4 years ago
• howmp / iisproxy
  通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
  ☆111Updated 2 years ago
• VMsec / PortBenderEXE
  PortBender修改为exe版本
  ☆29Updated 2 years ago
• mabangde / NTDSDumpEx
  ☆36Updated 11 months ago
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆55Updated 2 years ago
• XiaoliChan / zerologon-Shot
  Zerologon exploit with restore DC password automatically
  ☆142Updated last year
• Jumbo-WJB / search_rbcd
  Search msDS-AllowedToActOnBehalfOfOtherIdentity
  ☆35Updated 4 years ago
• dust-life / Free445-BOF
  ☆26Updated 9 months ago
• yanghaoi / enable-rdp
  Enable RDP and set firewall by Windows API.
  ☆21Updated 3 years ago
• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆56Updated 2 years ago