Jnnshschl / CVE-2023-38146Links
PoC for the ThemeBleed Windows 11 CVE-2023-38146 written in python using impacket. https://jnns.de/posts/cve-2023-38146-poc/
☆21Updated last year
Alternatives and similar repositories for CVE-2023-38146
Users that are interested in CVE-2023-38146 are comparing it to the libraries listed below
Sorting:
- Use ESC1 to perform a makeshift DCSync and dump hashes☆209Updated last year
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆74Updated last year
- To audit the security of read-only domain controllers☆117Updated last year
- Evasive Golang Loader☆136Updated last year
- ☆92Updated 2 years ago
- ☆100Updated 2 years ago
- ☆156Updated last year
- Active Directory Authentication Library☆79Updated 2 weeks ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated last year
- Lateral Movement☆124Updated last year
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆116Updated 4 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆147Updated this week
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆149Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- Simple C++ PoC of SeDebugPrivilege Privesc☆26Updated last year
- a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.☆89Updated 5 months ago
- My implementation of the GIUDA project in C++☆187Updated 2 years ago
- ☆231Updated last year
- Attempt at Obfuscated version of SharpCollection☆222Updated this week
- Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE☆196Updated 11 months ago
- ☆18Updated 10 months ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆175Updated 2 years ago
- Microsoft SharePoint Server Elevation of Privilege Vulnerability☆234Updated 2 years ago
- A RunAs clone with the ability to specify the password as an argument.☆111Updated 2 years ago
- ☆170Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆75Updated last year
- ☆137Updated last year
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆144Updated 9 months ago
- Exploit for the CVE-2023-23397☆160Updated 2 years ago