BeichenDream/BadPotato

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BeichenDream/BadPotato)

BeichenDream / BadPotato

Windows 权限提升 BadPotato

☆890

Alternatives and similar repositories for BadPotato

Users that are interested in BadPotato are comparing it to the libraries listed below

Sorting:

uknowsec / SweetPotato
View on GitHub
Modifying SweetPotato to support load shellcode and webshell
☆787Jun 2, 2021Updated 4 years ago
QAX-A-Team / sharpwmi
View on GitHub
sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
☆716Aug 3, 2021Updated 4 years ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,554Oct 28, 2021Updated 4 years ago
rootclay / WMIHACKER
View on GitHub
A Bypass Anti-virus Software Lateral Movement Command Execution Tool
☆1,464Jan 20, 2025Updated last year
uknowsec / SharpDecryptPwd
View on GitHub
对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
☆1,260Mar 16, 2022Updated 3 years ago
Tycx2ry / SweetPotato_CS
View on GitHub
修改的SweetPotato，使之可以用于CobaltStrike v4.0
☆246Apr 30, 2020Updated 5 years ago
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,430Sep 29, 2021Updated 4 years ago
QAX-A-Team / BrowserGhost
View on GitHub
这是一个抓取浏览器密码的工具，后续会添加更多功能
☆1,456May 21, 2022Updated 3 years ago
pandasec888 / taowu-cobalt_strike
View on GitHub
☆1,821Nov 24, 2025Updated 3 months ago
mai1zhi2 / SharpBeacon
View on GitHub
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
☆731Sep 1, 2021Updated 4 years ago
lengjibo / RedTeamTools
View on GitHub
记录自己编写、修改的部分工具
☆1,461Oct 19, 2025Updated 4 months ago
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆965Aug 5, 2021Updated 4 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,012May 21, 2024Updated last year
cbwang505 / CVE-2020-0787-EXP-ALL-WINDOWS-VERSION
View on GitHub
Support ALL Windows Version
☆722Sep 11, 2020Updated 5 years ago
uknowsec / SharpToolsAggressor
View on GitHub
内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
☆498Feb 13, 2020Updated 6 years ago
SkewwG / domainTools
View on GitHub
内网域渗透小工具
☆734Apr 20, 2021Updated 4 years ago
360-Linton-Lab / Telemetry
View on GitHub
WINDOWS TELEMETRY权限维持
☆257Jul 2, 2020Updated 5 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,016Oct 15, 2020Updated 5 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
BeichenDream / SharpToken
View on GitHub
Windows Token Stealing Expert
☆486Nov 24, 2023Updated 2 years ago
CCob / SweetPotato
View on GitHub
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
☆1,812Sep 4, 2024Updated last year
BeichenDream / PrintNotifyPotato
View on GitHub
PrintNotifyPotato
☆539Dec 2, 2022Updated 3 years ago
lengjibo / NetUser
View on GitHub
使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。
☆421Sep 29, 2021Updated 4 years ago
gloxec / CrossC2
View on GitHub
generate CobaltStrike's cross-platform payload
☆2,542Nov 20, 2023Updated 2 years ago
hack2fun / BypassAV
View on GitHub
Cobalt Strike插件，用于快速生成免杀的可执行文件
☆914Jul 19, 2020Updated 5 years ago
knownsec / shellcodeloader
View on GitHub
shellcodeloader
☆1,747Dec 11, 2020Updated 5 years ago
zcgonvh / EfsPotato
View on GitHub
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
☆816Dec 14, 2023Updated 2 years ago
SafeGroceryStore / MDUT
View on GitHub
MDUT - Multiple Database Utilization Tools
☆2,190Sep 22, 2023Updated 2 years ago
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆638Apr 4, 2021Updated 4 years ago
uknowsec / frpModify
View on GitHub
修改frp支持域前置与配置文件自删除
☆397Dec 31, 2020Updated 5 years ago
cube0x0 / noPac
View on GitHub
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
☆1,397Dec 16, 2021Updated 4 years ago
L-codes / Neo-reGeorg
View on GitHub
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
☆3,315Jan 4, 2026Updated last month
Airboi / bypass-av-note
View on GitHub
免杀技术大杂烩---乱拳也打不死老师傅
☆1,094Mar 29, 2021Updated 4 years ago
aleenzz / Cobalt_Strike_wiki
View on GitHub
Cobalt Strike系列
☆2,411Dec 3, 2023Updated 2 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆719May 25, 2020Updated 5 years ago
feihong-cs / ShiroExploit-Deprecated
View on GitHub
Shiro550/Shiro721 一键化利用工具，支持多种回显方式
☆1,950Jun 4, 2021Updated 4 years ago
Adminisme / ServerScan
View on GitHub
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
☆1,635Jun 16, 2024Updated last year
fnmsd / MySQL_Fake_Server
View on GitHub
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
☆1,360Nov 18, 2021Updated 4 years ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆770Jan 26, 2022Updated 4 years ago