Alternatives and similar repositories for fixes:

Users that are interested in fixes are comparing it to the libraries listed below

• TarlogicSecurity / sepriv
  Tool to manage user privileges
  ☆28Updated 5 years ago
• mobdk / Core
  Core bypass Windows Defender and execute any binary converted to shellcode
  ☆43Updated 3 years ago
• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆36Updated 4 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• hausec / Set-RBCDBytes
  ☆18Updated 4 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆29Updated 4 years ago
• kevthehermit / CVE-2020-11651
  PoC for CVE-2020-11651
  ☆6Updated 4 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆15Updated 4 years ago
• leonjza / tc2
  treafik fronted c2 examples
  ☆26Updated 4 years ago
• neofito / CVE-2020-1337
  CVE-2020-1048 bypass: binary planting PoC
  ☆32Updated 4 years ago
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆14Updated 4 years ago
• breakid / RedReaper
  This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.
  ☆18Updated 5 years ago
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated last year
• johneiser / MalleableC2Parser
  A library to parse, modify, and implement Malleable C2 profiles
  ☆21Updated 6 years ago
• 3gstudent / SCTPersistence
  Create COM Objects backed by Scripts, not DLLs
  ☆9Updated 7 years ago
• tid4l / SharpCGHunter
  Receive the status of Windows Defender Credential Guard on network hosts.
  ☆27Updated 3 years ago
• bufferbandit / leak.docx
  Leak windows system info through a docx file
  ☆12Updated 5 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆18Updated 3 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• CCob / Jboss-Wilfly-Hashes-to-Hashcat
  Converts JBoss/Wildfly management users properties file to hashcat format compatible with mode 20
  ☆12Updated 4 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆34Updated 3 years ago
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆27Updated 5 years ago
• slyd0g / SharpCrashEventLog
  C# port of LogServiceCrash
  ☆46Updated 4 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated 10 months ago
• T3KX / Crackmapexec-LAPS
  LAPS module for CrackMapExec
  ☆29Updated 3 years ago
• bao7uo / HexyRunner
  Takes raw hex shellcode (e.g. msfvenom hex format) from a cmd line arg, text file, or URL download and runs it.
  ☆19Updated 6 years ago
• vletoux / OxidBindings
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Updated 5 years ago
• blogresponder / BMC-Patrol-Agent-local-root-privilege-escalation
  Two Proof-Of-Concepts of SUID binary vulnerabilities on BMC Patrol allowing to elevate privileges from any linux user to root.
  ☆12Updated 4 years ago
• xpn / jupyter
  Collection of Jupyter notebooks
  ☆13Updated 4 years ago