Alternatives and similar repositories for NO445-lateral-movement

Users that are interested in NO445-lateral-movement are comparing it to the libraries listed below

• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆55Updated 2 years ago
• AgeloVito / self_delete_bof
  BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
  ☆77Updated 2 years ago
• mabangde / NTDSDumpEx
  ☆34Updated 7 months ago
• seventeenman / SelfDel-BOF
  Delete file regardless of whether the handle is used via SetFileInformationByHandle
  ☆54Updated 2 years ago
• StarfireLab / BrowserPivot
  ☆31Updated 2 years ago
• 0x3rhy / AddUser-Bof
  Cobalt Strike BOF that Add an admin user
  ☆78Updated 3 years ago
• dust-life / Free445-BOF
  ☆25Updated 6 months ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆45Updated 3 years ago
• P0x00 / ASPX_Bonanza
  ASPX ShellCode Loader
  ☆52Updated last year
• Like0x / AddDefenderExclusions-BOF
  AddDefenderExclusions Beacon Object File
  ☆40Updated 2 years ago
• XiaoliChan / CrackMapExec-Extension
  CrackMapExec extension module/protocol support
  ☆42Updated 2 years ago
• aleenzz / SCExec
  ☆30Updated 2 years ago
• AgeloVito / adduserbysamr-bof
  Cobalt Strike BOF that Add a user to localgroup by samr
  ☆131Updated 2 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• m1ddl3w4r3 / ExecRemoteNET
  Execute Remote Assembly with args passing and with AMSI and ETW patching .
  ☆35Updated 3 months ago
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• Like0x / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆24Updated 4 years ago
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year
• M0nster3 / ITaskServers
  Bypass EDR Create TaskServers
  ☆36Updated 2 years ago
• Octoberfest7 / KillDefender_BOF
  Beacon Object File implementation of pwn1sher's KillDefender
  ☆67Updated 3 years ago
• yanghaoi / LaunchSystemCmd
  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。
  ☆33Updated 3 years ago
• xunyang1 / ssp_dump_lsass
  RPC 调用添加ssp扩展dump lsass
  ☆20Updated 3 years ago
• kyxiaxiang / CrackSleeve4.9
  ☆43Updated 2 years ago
• N1k0la-T / CVE-2023-21707
  CVE-2023-21707 EXP
  ☆28Updated 2 years ago
• Rvn0xsy / ZeroLogon
  CVE-2020-1472 C++
  ☆83Updated 3 years ago
• yzddmr6 / SharpAlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks Rewrite In C#
  ☆90Updated 2 years ago
• howmp / iisproxy
  通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
  ☆89Updated last year
• aleenzz / ADExplorerX
  ☆46Updated last year
• VMsec / PortBenderEXE
  PortBender修改为exe版本
  ☆28Updated 2 years ago