HuskyHacks / ShadowStealLinks
Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
☆212Updated 3 years ago
Alternatives and similar repositories for ShadowSteal
Users that are interested in ShadowSteal are comparing it to the libraries listed below
Sorting:
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆234Updated 3 years ago
- ☆296Updated last year
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆333Updated 3 years ago
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆311Updated 4 years ago
- A little tool to play with Outlook☆207Updated 3 years ago
- Exploit to SYSTEM for CVE-2021-21551☆236Updated 4 years ago
- Executes position independent shellcode from an encrypted zip☆304Updated 4 years ago
- Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)☆199Updated 3 years ago
- Run Rubeus via Rundll32☆200Updated 5 years ago
- Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.☆281Updated 11 months ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆281Updated 3 years ago
- ☆161Updated 3 years ago
- Amplify network visibility from multiple POV of other hosts☆305Updated last year
- Pass the Hash to a named pipe for token Impersonation☆306Updated last year
- Print Spooler Named Pipe Impersonation for Cobalt Strike☆268Updated 5 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆171Updated 5 years ago
- Proof-of-concept tools for my AD Forest trust research☆223Updated last year
- Office 365 and Exchange Enumeration☆191Updated 6 years ago
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆185Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆267Updated 4 years ago
- A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object☆243Updated 5 years ago
- One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/☆156Updated 5 years ago
- Simple rapper for Mimikatz, bypass Defender☆137Updated 4 years ago
- Collection of tested Cobaltstrike aggressor scripts.☆118Updated 5 years ago
- .NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy P…☆176Updated 5 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆63Updated 6 years ago
- ☆170Updated 4 years ago
- Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon☆223Updated 4 years ago
- A C# implementation of RDPThief to steal credentials from RDP.☆163Updated 5 years ago
- Programmatically create an administrative user under Windows☆183Updated 8 years ago