N1k0la-T / CVE-2023-36745

Related projects ⓘ

Alternatives and complementary repositories for CVE-2023-36745

• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆239Updated 2 months ago
• Cipher7 / ChaiLdr
  AV bypass while you sip your Chai!
  ☆206Updated 5 months ago
• mertdas / RedPersist
  ☆212Updated 7 months ago
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆199Updated 11 months ago
• Zerx0r / dvenom
  🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.
  ☆158Updated last year
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆389Updated last year
• Workingdaturah / Payload-Generator
  An aggressor script that can help automate payload building in Cobalt Strike
  ☆111Updated 9 months ago
• Wh04m1001 / CVE-2024-20656
  ☆128Updated 9 months ago
• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆135Updated 4 months ago
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆208Updated last week
• Helixo32 / NimBlackout
  Kill AV/EDR leveraging BYOVD attack
  ☆307Updated last year
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆146Updated 6 months ago
• tylerdotrar / SigmaPotato
  SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…
  ☆237Updated 5 months ago
• TunnelGRE / Percino
  Evasive Golang Loader
  ☆130Updated 3 months ago
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆181Updated 9 months ago
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆146Updated 3 months ago
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆364Updated 4 months ago
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆264Updated 3 months ago
• hackvens / CoercedPotato
  ☆229Updated 10 months ago
• passtheticket / CVE-2024-38200
  CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆124Updated 2 weeks ago
• rweijnen / createdump
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆141Updated last month
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆198Updated last year
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆336Updated last year
• ricardojoserf / WhoamiAlternatives
  Different methods to get current username without using whoami
  ☆172Updated 8 months ago
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆325Updated 7 months ago
• MzHmO / NtlmThief
  Extracting NetNTLM without touching lsass.exe
  ☆223Updated 11 months ago
• wh0amitz / BypassCredGuard
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆309Updated last year
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆262Updated this week
• Chocapikk / CVE-2023-29357
  Microsoft SharePoint Server Elevation of Privilege Vulnerability
  ☆227Updated last year