KINGSABRI / MSI-AlwaysInstallElevatedLinks
A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy
☆38Updated 2 years ago
Alternatives and similar repositories for MSI-AlwaysInstallElevated
Users that are interested in MSI-AlwaysInstallElevated are comparing it to the libraries listed below
Sorting:
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆65Updated 5 years ago
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆53Updated 4 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 3 years ago
- POC tools for exploring SMB over QUIC protocol☆128Updated 3 years ago
- ☆52Updated 3 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- ☆88Updated 3 years ago
- python spraying tools based on impacket lib☆54Updated 3 years ago
- C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments☆111Updated 3 years ago
- ☆141Updated 3 years ago
- Simple C# implementation of PowerUpSQL☆94Updated last year
- ☆29Updated 2 years ago
- ☆32Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆78Updated 3 years ago
- Get SYSTEM via SeDebugPrivilege☆21Updated 3 years ago
- Malicious Shortcut(.lnk) Generator☆85Updated 6 years ago
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆101Updated 2 years ago
- SeRestorePrivilege to SYSTEM☆122Updated 3 years ago
- a repository that contains the program.cs source file that has D/Invoke bare minimum implementation and AES encryption for shellcode exec…☆23Updated 2 years ago
- Binary and CrackMapExec module to impersonate tokens on a windows machine☆46Updated 3 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆189Updated 3 years ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆136Updated last year
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆107Updated 3 years ago
- A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …☆88Updated 2 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆86Updated 3 years ago
- Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.☆111Updated 3 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆85Updated last year
- Load .net assemblies from memory while having them appear to be loaded from an on-disk location.☆169Updated 4 years ago
- Simple APPLocker bypass summary☆43Updated 6 years ago