BeichenDream/BadPotato

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BeichenDream/BadPotato)

BeichenDream / BadPotato

Windows 权限提升 BadPotato

☆889

Alternatives and similar repositories for BadPotato

Users that are interested in BadPotato are comparing it to the libraries listed below

Sorting:

uknowsec / SweetPotato
View on GitHub
Modifying SweetPotato to support load shellcode and webshell
☆788Jun 2, 2021Updated 4 years ago
QAX-A-Team / sharpwmi
View on GitHub
sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
☆715Aug 3, 2021Updated 4 years ago
Tycx2ry / SweetPotato_CS
View on GitHub
修改的SweetPotato，使之可以用于CobaltStrike v4.0
☆246Apr 30, 2020Updated 5 years ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,557Oct 28, 2021Updated 4 years ago
uknowsec / SharpDecryptPwd
View on GitHub
对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
☆1,260Mar 16, 2022Updated 4 years ago
rootclay / WMIHACKER
View on GitHub
A Bypass Anti-virus Software Lateral Movement Command Execution Tool
☆1,464Jan 20, 2025Updated last year
QAX-A-Team / BrowserGhost
View on GitHub
这是一个抓取浏览器密码的工具，后续会添加更多功能
☆1,455May 21, 2022Updated 3 years ago
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,430Sep 29, 2021Updated 4 years ago
pandasec888 / taowu-cobalt_strike
View on GitHub
☆1,825Nov 24, 2025Updated 3 months ago
lengjibo / RedTeamTools
View on GitHub
记录自己编写、修改的部分工具
☆1,464Oct 19, 2025Updated 5 months ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,014May 21, 2024Updated last year
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆964Aug 5, 2021Updated 4 years ago
SkewwG / domainTools
View on GitHub
内网域渗透小工具
☆733Apr 20, 2021Updated 4 years ago
cbwang505 / CVE-2020-0787-EXP-ALL-WINDOWS-VERSION
View on GitHub
Support ALL Windows Version
☆722Sep 11, 2020Updated 5 years ago
mai1zhi2 / SharpBeacon
View on GitHub
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
☆729Sep 1, 2021Updated 4 years ago
BeichenDream / SharpToken
View on GitHub
Windows Token Stealing Expert
☆486Nov 24, 2023Updated 2 years ago
uknowsec / SharpToolsAggressor
View on GitHub
内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
☆499Feb 13, 2020Updated 6 years ago
BeichenDream / PrintNotifyPotato
View on GitHub
PrintNotifyPotato
☆539Dec 2, 2022Updated 3 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,015Oct 15, 2020Updated 5 years ago
360-Linton-Lab / Telemetry
View on GitHub
WINDOWS TELEMETRY权限维持
☆258Jul 2, 2020Updated 5 years ago
CCob / SweetPotato
View on GitHub
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
☆1,812Sep 4, 2024Updated last year
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,405Jan 18, 2022Updated 4 years ago
lengjibo / NetUser
View on GitHub
使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。
☆421Sep 29, 2021Updated 4 years ago
hack2fun / BypassAV
View on GitHub
Cobalt Strike插件，用于快速生成免杀的可执行文件
☆914Jul 19, 2020Updated 5 years ago
gloxec / CrossC2
View on GitHub
generate CobaltStrike's cross-platform payload
☆2,547Nov 20, 2023Updated 2 years ago
SafeGroceryStore / MDUT
View on GitHub
MDUT - Multiple Database Utilization Tools
☆2,194Sep 22, 2023Updated 2 years ago
uknowsec / frpModify
View on GitHub
修改frp支持域前置与配置文件自删除
☆397Dec 31, 2020Updated 5 years ago
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆637Apr 4, 2021Updated 4 years ago
knownsec / shellcodeloader
View on GitHub
shellcodeloader
☆1,747Dec 11, 2020Updated 5 years ago
L-codes / Neo-reGeorg
View on GitHub
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
☆3,327Mar 11, 2026Updated last week
Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆535Aug 25, 2020Updated 5 years ago
cube0x0 / noPac
View on GitHub
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
☆1,397Dec 16, 2021Updated 4 years ago
zcgonvh / EfsPotato
View on GitHub
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
☆819Dec 14, 2023Updated 2 years ago
l3m0n / Bypass_Disable_functions_Shell
View on GitHub
一个各种方式突破Disable_functions达到命令执行的shell
☆1,198Oct 17, 2023Updated 2 years ago
Adminisme / ServerScan
View on GitHub
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
☆1,634Jun 16, 2024Updated last year
feihong-cs / ShiroExploit-Deprecated
View on GitHub
Shiro550/Shiro721 一键化利用工具，支持多种回显方式
☆1,953Jun 4, 2021Updated 4 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,468Apr 25, 2024Updated last year
dr0op / WeblogicScan
View on GitHub
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
☆967Jun 16, 2024Updated last year
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆772Jan 26, 2022Updated 4 years ago