HadessCS/Awesome-Privilege-Escalation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

HadessCS/Awesome-Privilege-Escalation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HadessCS/Awesome-Privilege-Escalation)

Close

HadessCS / Awesome-Privilege-EscalationView on GitHubMore

• External links
• Readme badge

Awesome Privilege Escalation

☆145Oct 18, 2022Updated 3 years ago

Alternatives and similar repositories for Awesome-Privilege-Escalation

Users that are interested in Awesome-Privilege-Escalation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HadessCS / Delta

  View on GitHub
  LLM Vulnerable Application
  ☆13Aug 19, 2023Updated 2 years ago
• xct / SeRestoreAbuse

  View on GitHub
  SeRestorePrivilege to SYSTEM
  ☆136Oct 8, 2021Updated 4 years ago
• RedefiningReality / Cheatsheets

  View on GitHub
  A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.
  ☆284Oct 8, 2025Updated 5 months ago
• soheilsec / Active-Directory-For-Hackers

  View on GitHub
  AD concepts, attack surfaces and attack vectors notes, slides, video...
  ☆16Dec 6, 2024Updated last year
• ricardojoserf / SharpNado

  View on GitHub
  Repository to gather the .NET malware I will be developing
  ☆18Mar 7, 2026Updated 3 weeks ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• ricardojoserf / TrickDump

  View on GitHub
  Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
  ☆543May 9, 2025Updated 10 months ago
• strozfriedberg / DUALITY

  View on GitHub
  ☆18Feb 29, 2024Updated 2 years ago
• nathanealm / PrintNightmare-Exploit

  View on GitHub
  ☆35May 31, 2023Updated 2 years ago
• 0xbad53c / OffSecOps-Arsenal

  View on GitHub
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆45Aug 16, 2024Updated last year
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year
• Meowoverflow / Rootkits_Subverting_the_Windows_Kernel

  View on GitHub
  source code for the examples and topics from the book
  ☆10Mar 11, 2019Updated 7 years ago
• Meowmycks / LetMeowIn

  View on GitHub
  A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
  ☆443Jul 8, 2024Updated last year
• Crowdfense / CVE-2024-21338

  View on GitHub
  Windows AppLocker Driver (appid.sys) LPE
  ☆76Jul 29, 2024Updated last year
• nickvourd / Windows-Local-Privilege-Escalation-Cookbook

  View on GitHub
  Windows Local Privilege Escalation Cookbook
  ☆1,287Feb 5, 2026Updated last month
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• nickvourd / Mini-Tools

  View on GitHub
  Custom mini tools during Red Teaming engagements
  ☆24Mar 7, 2026Updated 3 weeks ago
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation

  View on GitHub
  ☆37Jan 4, 2026Updated 2 months ago
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated 10 months ago
• rad9800 / FileRenameJunctionsEDRDisable

  View on GitHub
  ☆158Dec 13, 2024Updated last year
• okankurtuluss / AMSIBypassPatch

  View on GitHub
  This PowerShell script applies a memory patch to bypass the Antimalware Scan Interface (AMSI), allowing unrestricted execution of PowerSh…
  ☆14Jun 2, 2024Updated last year
• Karkas66 / CelestialSpark

  View on GitHub
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Mar 27, 2025Updated last year
• esidate / pentesting-active-directory

  View on GitHub
  Active Directory pentesting mind map
  ☆519May 26, 2023Updated 2 years ago
• MaorSabag / TrueSightKiller

  View on GitHub
  CPP AV/EDR Killer
  ☆480Nov 28, 2023Updated 2 years ago
• LearningKijo / SecurityResearcher-Note

  View on GitHub
  Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
  ☆485Apr 17, 2025Updated 11 months ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• eversinc33 / NetRunner

  View on GitHub
  A .NET assembly tracer using Harmony for runtime method interception.
  ☆50Oct 24, 2025Updated 5 months ago
• fkie-cad / ryoshi

  View on GitHub
  Detect and extract hidden files
  ☆22Aug 29, 2024Updated last year
• gatariee / gocheck

  View on GitHub
  Because AV evasion should be easy.
  ☆860Nov 28, 2024Updated last year
• ricardojoserf / NativeDump

  View on GitHub
  Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
  ☆702May 7, 2025Updated 10 months ago
• VoldeSec / PatchlessCLRLoader

  View on GitHub
  .NET assembly loader with patchless AMSI and ETW bypass
  ☆374Apr 19, 2023Updated 2 years ago
• sokaRepo / CoercedPotatoRDLL

  View on GitHub
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆226Nov 23, 2023Updated 2 years ago
• senzee1984 / EDRPrison

  View on GitHub
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆462Aug 2, 2024Updated last year
• Cracked5pider / eop24-26229

  View on GitHub
  A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user
  ☆41Aug 15, 2024Updated last year
• Maldev-Academy / EmbedPayloadInPng

  View on GitHub
  Embed a payload inside a PNG file
  ☆371Oct 24, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• DingyShark / nuclei-scan-sort

  View on GitHub
  Simple Python script to sort nuclei scans by severity and URL
  ☆29May 24, 2023Updated 2 years ago
• 0xEr3bus / RdpStrike

  View on GitHub
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆250Jun 11, 2024Updated last year
• HadessCS / Red-team-Interview-Questions

  View on GitHub
  Red team Interview Questions
  ☆742Apr 11, 2025Updated 11 months ago
• passtheticket / CVE-2024-38200

  View on GitHub
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆146Jan 13, 2025Updated last year
• 0xJs / CARTP-cheatsheet

  View on GitHub
  Azure AD cheatsheet for the CARTP course
  ☆150May 5, 2022Updated 3 years ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated last year
• Offensive-Panda / ShadowDumper

  View on GitHub
  Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…
  ☆572May 22, 2025Updated 10 months ago