Jnnshschl / CVE-2023-38146Links
PoC for the ThemeBleed Windows 11 CVE-2023-38146 written in python using impacket. https://jnns.de/posts/cve-2023-38146-poc/
☆21Updated last year
Alternatives and similar repositories for CVE-2023-38146
Users that are interested in CVE-2023-38146 are comparing it to the libraries listed below
Sorting:
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆74Updated last year
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆143Updated 8 months ago
- ☆157Updated last year
- Exploit for the CVE-2023-23397☆161Updated 2 years ago
- PoCs of RCEs against open source C2 servers☆87Updated last year
- Simple C++ PoC of SeDebugPrivilege Privesc☆25Updated last year
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Updated last year
- Active Directory Authentication Library☆80Updated last month
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆144Updated 6 months ago
- Leverage WindowsApp createdump tool to obtain an lsass dump☆149Updated last year
- To audit the security of read-only domain controllers☆118Updated last year
- SeRestorePrivilege to SYSTEM☆123Updated 3 years ago
- ☆52Updated 3 years ago
- Evasive Golang Loader☆135Updated last year
- ☆92Updated 2 years ago
- Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE☆195Updated 10 months ago
- My implementation of the GIUDA project in C++☆186Updated 2 years ago
- Lateral Movement☆124Updated last year
- ☆100Updated 2 years ago
- Execute commands interactively on remote Windows machines using the WinRM protocol☆238Updated 3 weeks ago
- Attempt at Obfuscated version of SharpCollection☆222Updated 3 weeks ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆171Updated 10 months ago
- A RunAs clone with the ability to specify the password as an argument.☆112Updated 2 years ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆110Updated 3 months ago
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆119Updated last year
- Github as C2 Demonstration , free API = free C2 Infrastructure☆141Updated 2 years ago
- ☆119Updated 6 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆217Updated 11 months ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago