Jnnshschl / CVE-2023-38146

Related projects ⓘ

Alternatives and complementary repositories for CVE-2023-38146

• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆108Updated last month
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆77Updated last year
• decoder-it / ADCSCoercePotato
  ☆207Updated 6 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆162Updated last month
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆113Updated 11 months ago
• rweijnen / createdump
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆142Updated 2 months ago
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆200Updated 11 months ago
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆135Updated 4 months ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆78Updated 2 years ago
• watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆158Updated last week
• weaselsec / GodPotato-Aggressor-Script
  ☆86Updated 10 months ago
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆110Updated 10 months ago
• Cipher7 / ApexLdr
  ApexLdr is a DLL Payload Loader written in C
  ☆104Updated 4 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆155Updated last month
• mertdas / SharpLateral
  Lateral Movement
  ☆119Updated last year
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆146Updated 4 months ago
• byronkg / SharpGPOAbuse
  Precompiled executable
  ☆37Updated last year
• fin3ss3g0d / ASPJinjaObfuscator
  Heavily obfuscated ASP web shell generation tool.
  ☆163Updated 6 months ago
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆270Updated this week
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆198Updated last year
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆130Updated last year
• passtheticket / CVE-2024-38200
  CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆129Updated last month
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆102Updated 3 weeks ago
• rasta-mouse / SCMUACBypass
  ☆94Updated last year
• N1k0la-T / CVE-2023-36745
  ☆163Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆42Updated 2 years ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆156Updated last year
• Zerx0r / dvenom
  🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.
  ☆158Updated last year