The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
☆125Jun 22, 2020Updated 5 years ago
Alternatives and similar repositories for ElevateKit
Users that are interested in ElevateKit are comparing it to the libraries listed below
Sorting:
- Inject remote template link into word document for remote template injection☆183Feb 13, 2021Updated 5 years ago
- ☆12Sep 17, 2020Updated 5 years ago
- Malicious WMI Events using PowerShell☆397Jul 25, 2016Updated 9 years ago
- ☆199Oct 14, 2019Updated 6 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆255Nov 24, 2025Updated 3 months ago
- Collection of remote authentication triggers in C#☆524May 15, 2024Updated last year
- ☆1,532Aug 11, 2023Updated 2 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆143Mar 9, 2024Updated last year
- Chameleon: A tool for evading Proxy categorisation☆512Nov 28, 2024Updated last year
- Remove API hooks from a Beacon process.☆76Mar 13, 2022Updated 3 years ago
- A tool to help query AD via the LDAP protocol☆608Sep 25, 2024Updated last year
- SharpUp is a C# port of various PowerUp functionality.☆1,461Feb 14, 2024Updated 2 years ago
- Advanced keyboard-walk generator with configureable basechars, keymap and routes☆596Aug 19, 2025Updated 6 months ago
- TCP Port Redirection Utility☆762Jan 31, 2023Updated 3 years ago
- This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be …☆16Aug 12, 2025Updated 6 months ago
- A C# utility for interacting with SCCM☆682Aug 20, 2025Updated 6 months ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,419Jan 14, 2026Updated last month
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆749Dec 8, 2025Updated 2 months ago
- SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…☆1,302Dec 15, 2020Updated 5 years ago
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆779Oct 16, 2025Updated 4 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆839Dec 2, 2023Updated 2 years ago
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,556Oct 17, 2022Updated 3 years ago
- Active Directory certificate abuse.☆1,921Oct 27, 2025Updated 4 months ago
- C# implementation of harmj0y's PowerView☆1,086Mar 22, 2024Updated last year
- Situational Awareness commands implemented using Beacon Object Files☆1,722Feb 23, 2026Updated last week
- A .NET Runtime for Cobalt Strike's Beacon Object Files☆772Sep 4, 2024Updated last year
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,811Sep 4, 2024Updated last year
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF)☆321Nov 9, 2021Updated 4 years ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,370Oct 27, 2023Updated 2 years ago
- Egress-Assess is a tool used to test egress data detection capabilities☆696Aug 9, 2023Updated 2 years ago
- ☆13Jul 30, 2021Updated 4 years ago
- Cobalt Strike Aggressor script create for RTO☆16Apr 11, 2024Updated last year
- Some notes and examples for cobalt strike's functionality☆1,127Feb 8, 2022Updated 4 years ago
- A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use int…☆252Nov 24, 2025Updated 3 months ago
- "Golden" certificates☆710Aug 17, 2024Updated last year
- InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assem…☆740Jul 22, 2023Updated 2 years ago
- Tool to audit and attack LAPS environments☆928Jan 31, 2018Updated 8 years ago
- SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.☆1,391Jun 27, 2024Updated last year
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,263Mar 19, 2025Updated 11 months ago