HuskyHacks / ShadowSteal
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
☆210Updated 3 years ago
Alternatives and similar repositories for ShadowSteal:
Users that are interested in ShadowSteal are comparing it to the libraries listed below
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆231Updated 2 years ago
- Executes position independent shellcode from an encrypted zip☆303Updated 4 years ago
- ☆293Updated 9 months ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆275Updated 3 years ago
- Print Spooler Named Pipe Impersonation for Cobalt Strike☆263Updated 4 years ago
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆306Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆264Updated 4 years ago
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆220Updated 4 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆147Updated 4 years ago
- Office 365 and Exchange Enumeration☆187Updated 5 years ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆201Updated 4 years ago
- Exploit to SYSTEM for CVE-2021-21551☆237Updated 3 years ago
- Run Rubeus via Rundll32☆200Updated 4 years ago
- Programmatically create an administrative user under Windows☆180Updated 8 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆205Updated last year
- Amplify network visibility from multiple POV of other hosts☆302Updated last year
- Pass the Hash to a named pipe for token Impersonation☆302Updated last year
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆325Updated 2 years ago
- Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.☆277Updated 5 months ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆174Updated 4 years ago
- One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/☆149Updated 4 years ago
- MS-FSRVP coercion abuse PoC☆288Updated 3 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆326Updated 5 years ago
- A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…☆268Updated last year
- A little tool to play with Outlook☆206Updated 3 years ago
- Proof-of-concept tools for my AD Forest trust research☆208Updated 10 months ago
- Collection of beacon BOF written to learn windows and cobaltstrike☆347Updated 2 years ago
- .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy P…☆172Updated 5 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆256Updated 3 years ago
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆181Updated 3 years ago