1ight-2020 / GoRottenTomato
Go实现部分Rubeus功能,可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等
☆137Updated 2 years ago
Alternatives and similar repositories for GoRottenTomato:
Users that are interested in GoRottenTomato are comparing it to the libraries listed below
- ☆2Updated 2 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆195Updated 7 months ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆148Updated 2 years ago
- hyscan HengGe Team☆69Updated 2 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆87Updated 3 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆86Updated 11 months ago
- impacket编程手册☆101Updated last year
- 提取域控日志,支持远程提取☆152Updated last year
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆109Updated 4 years ago
- 利用 NTLMSSP 探测 Windows 信息☆170Updated 2 years ago
- 获取Exchange信息的小工具☆224Updated last year
- exchange-ssrf-rce☆78Updated 3 years ago
- CrossC2通信协议API实现☆84Updated 3 years ago
- 蚁剑AES加密通信ASPX Webshell☆31Updated 3 years ago
- NTLM relay test.☆189Updated last year
- 连接eval一句话webshell,获得可交互的虚拟终端☆97Updated 2 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆86Updated 2 years ago
- If you only have hash, you can still operate exchange☆70Updated 3 years ago
- ☆88Updated 2 years ago
- Zerologon exploit with restore DC password automatically☆132Updated 10 months ago
- geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.☆159Updated 2 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆147Updated 3 years ago
- 域内普通域用户权限查找域内所有计算机上登录的用户☆145Updated last year
- CVE-2021-4034 Add Root User - Pkexec Local Privilege Escalation☆96Updated 2 years ago
- Zerologon自动化脚本☆87Updated last year
- 窃取当前用户的ssh,sudo密码☆69Updated last year
- 创建服务持久化☆104Updated 3 years ago