Alternatives and similar repositories for SystemNightmare:

Users that are interested in SystemNightmare are comparing it to the libraries listed below

• byt3bl33d3r / ItWasAllADream
  A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
  ☆792Updated 9 months ago
• cfalta / MicrosoftWontFixList
  A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. T…
  ☆946Updated 3 years ago
• bats3c / ADCSPwn
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆828Updated last year
• GossiTheDog / HiveNightmare
  Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
  ☆739Updated 3 years ago
• jfmaes / LazySign
  Create fake certs for binaries using windows binaries and the power of bat files
  ☆552Updated 11 months ago
• mubix / solarflare
  SolarWinds Orion Account Audit / Password Dumping Utility
  ☆351Updated last year
• juliourena / SharpNoPSExec
  Get file less command execution for lateral movement.
  ☆612Updated 2 years ago
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,363Updated 2 years ago
• Mr-Un1k0d3r / RedTeamCCode
  Red Team C code repo
  ☆528Updated 2 months ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆354Updated 4 years ago
• LaresLLC / CVE-2021-1675
  CVE-2021-1675 Detection Info
  ☆215Updated last year
• GhostPack / ForgeCert
  "Golden" certificates
  ☆657Updated 6 months ago
• cfalta / PowerShellArmoury
  A PowerShell armoury for security guys and girls
  ☆468Updated last year
• Flangvik / BetterSafetyKatz
  Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…
  ☆854Updated 3 years ago
• oldboy21 / LDAP-Password-Hunter
  Password Hunter in Active Directory
  ☆197Updated 2 years ago
• CCob / lsarelayx
  NTLM relaying for Windows made easy
  ☆556Updated last year
• nccgroup / nccfsas
  Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.
  ☆608Updated 2 years ago
• tanc7 / EXOCET-AV-Evasion
  EXOCET - AV-evading, undetectable, payload delivery tool
  ☆836Updated 2 years ago
• calebstewart / CVE-2021-1675
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,038Updated 3 years ago
• smokeme / payloadGenerator
  Generate obfuscated meterpreter shells
  ☆228Updated 3 years ago
• mamun-sec / dfirt
  Collect information of Windows PC when doing incident response
  ☆252Updated last year
• VoidSec / CVE-2020-1472
  Exploit Code for CVE-2020-1472 aka Zerologon
  ☆382Updated 4 years ago
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆988Updated 3 years ago
• Dec0ne / KrbRelayUp
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,566Updated 2 years ago
• S3cur3Th1sSh1t / Creds
  Some usefull Scripts and Executables for Pentest & Forensics
  ☆1,106Updated 3 months ago
• Mr-Un1k0d3r / RedTeamCSharpScripts
  C# Script used for Red Team
  ☆718Updated 3 years ago
• ivan-sincek / powershell-reverse-tcp
  PowerShell scripts for communicating with a remote host.
  ☆301Updated last year
• klezVirus / vortex
  VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
  ☆429Updated last year
• Kevin-Robertson / InveighZero
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆793Updated 2 years ago
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆741Updated last year