Bdenneu / CVE-2022-33679

Related projects ⓘ

Alternatives and complementary repositories for CVE-2022-33679

• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆441Updated 7 months ago
• testanull / ProxyNotShell-PoC
  ☆402Updated 2 years ago
• N7WEra / BofAllTheThings
  Creating a repository with all public Beacon Object Files (BoFs)
  ☆421Updated last year
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆399Updated 2 years ago
• Octoberfest7 / MemFiles
  A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk
  ☆428Updated 4 months ago
• Dec0ne / DavRelayUp
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆523Updated last year
• RalfHacker / Kerbeus-BOF
  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
  ☆396Updated 2 weeks ago
• CodeXTF2 / Burp2Malleable
  Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles
  ☆368Updated last year
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆274Updated 2 years ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆304Updated 2 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆361Updated 2 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆367Updated 2 years ago
• ly4k / PassTheChallenge
  Recovering NTLM hashes from Credential Guard
  ☆327Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆317Updated 4 months ago
• S3cur3Th1sSh1t / MultiPotato
  ☆499Updated 3 years ago
• nickvourd / COM-Hunter
  COM Hijacking VOODOO
  ☆257Updated 8 months ago
• api0cradle / CVE-2023-23397-POC-Powershell
  ☆340Updated last year
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆215Updated 10 months ago
• nettitude / SharpWSUS
  ☆442Updated 2 years ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆390Updated last year
• wh0amitz / BypassCredGuard
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆310Updated last year
• REDMED-X / OperatorsKit
  Collection of Beacon Object Files (BOF) for Cobalt Strike
  ☆540Updated 4 months ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆359Updated last year
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆292Updated 2 years ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆374Updated 8 months ago
• boku7 / Ninja_UUID_Runner
  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!
  ☆433Updated last year
• fortra / No-Consolation
  A BOF that runs unmanaged PEs inline
  ☆546Updated 3 weeks ago
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheatsheets learned from engagements
  ☆425Updated last month
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆252Updated 3 years ago