AgeloVito / adduserbysamr-bofLinks
Cobalt Strike BOF that Add a user to localgroup by samr
☆131Updated 2 years ago
Alternatives and similar repositories for adduserbysamr-bof
Users that are interested in adduserbysamr-bof are comparing it to the libraries listed below
Sorting:
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆77Updated 2 years ago
- ☆49Updated 2 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆89Updated last year
- Take a screenshot without injection for Cobalt Strike☆200Updated 2 years ago
- Cobalt Strike BOF that Add an admin user☆78Updated 2 years ago
- impacket编程手册☆105Updated last year
- Zerologon exploit with restore DC password automatically☆140Updated last year
- mssqlproxy python3.5+ 并修复bug☆64Updated 2 years ago
- If you only have hash, you can still operate exchange☆76Updated 3 years ago
- ☆34Updated 7 months ago
- more conveniently Visual-Studio-BOF-template☆71Updated 2 years ago
- Shellcode Reductio Entropy Tools☆73Updated last year
- command execute without 445 port☆52Updated 3 years ago
- Binary Hollowing☆82Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆90Updated 2 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆22Updated last year
- Hidedump:a lsassdump tools that may bypass EDR☆50Updated last year
- 主要用于隐藏进程真实路径,进程带windows真签名☆114Updated 11 months ago
- Zerologon自动化脚本☆96Updated 2 years ago
- Delete file regardless of whether the handle is used via SetFileInformationByHandle☆53Updated 2 years ago
- Lsass memory dump.☆53Updated last year
- 密码收集☆58Updated 3 years ago
- ☆37Updated 2 years ago
- C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can…☆16Updated 4 years ago
- ☆94Updated 2 years ago
- Loader Pre-Technology, Main thread hijacking without using API, get ntdll and kernel32 handle without peb. 加载器前置技术,不使用API进行主线程劫持,不使用PEB…☆81Updated 2 months ago
- CrackMapExec extension module/protocol support☆42Updated 2 years ago
- 根据攻防以及域信息收集经验dump快而有用的域信息☆102Updated 2 years ago
- ASPX ShellCode Loader☆50Updated last year