Alternatives and similar repositories for NO445-lateral-movement

Users that are interested in NO445-lateral-movement are comparing it to the libraries listed below

• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆78Updated 2 years ago
• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆54Updated 2 years ago
• 0x3rhy / AddUser-Bof
  Cobalt Strike BOF that Add an admin user
  ☆77Updated 2 years ago
• mabangde / NTDSDumpEx
  ☆34Updated 5 months ago
• P0x00 / ASPX_Bonanza
  ASPX ShellCode Loader
  ☆50Updated last year
• m1ddl3w4r3 / ExecRemoteNET
  Execute Remote Assembly with args passing and with AMSI and ETW patching .
  ☆35Updated last month
• StarfireLab / BrowserPivot
  ☆31Updated last year
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆42Updated last year
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• dust-life / Free445-BOF
  ☆24Updated 4 months ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆45Updated 3 years ago
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆49Updated 2 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• aleenzz / SCExec
  ☆30Updated 2 years ago
• Octoberfest7 / KillDefender_BOF
  Beacon Object File implementation of pwn1sher's KillDefender
  ☆67Updated 3 years ago
• AgeloVito / adduserbysamr-bof
  Cobalt Strike BOF that Add a user to localgroup by samr
  ☆131Updated 2 years ago
• Like0x / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆24Updated 4 years ago
• xunyang1 / ssp_dump_lsass
  RPC 调用添加ssp扩展dump lsass
  ☆19Updated 3 years ago
• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆83Updated 2 years ago
• Like0x / AddDefenderExclusions-BOF
  AddDefenderExclusions Beacon Object File
  ☆41Updated 2 years ago
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year
• N1k0la-T / CVE-2023-21707
  CVE-2023-21707 EXP
  ☆28Updated 2 years ago
• 3as0n / cobaltstrike-bof-toolset
  在cobaltstrike中使用的bof工具集，收集整理验证好用的bof。
  ☆15Updated 3 years ago
• howmp / iisproxy
  通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
  ☆89Updated last year
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆37Updated 2 years ago
• Jumbo-WJB / PTH_Exchange
  If you only have hash, you can still operate exchange
  ☆76Updated 3 years ago
• XiaoliChan / winrm-PTH
  Golang implement winrm client with pass the hash
  ☆31Updated last year
• XiaoliChan / PetitPotam-V2
  More EFS coerced authentication method with PetitPotam.py
  ☆25Updated 2 years ago
• aleenzz / ADExplorerX
  ☆46Updated last year