NetSPI/ruler

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/NetSPI/ruler)

NetSPI / ruler

A tool to abuse Exchange services

☆12

Alternatives and similar repositories for ruler

Users that are interested in ruler are comparing it to the libraries listed below

Sorting:

RonF98 / CVE-2024-43451-POC
View on GitHub
CVE-2024-43451 is a Windows NTLM vulnerability that allows an attacker to force authentication and capture NTLM hashes by using malicious…
☆15Jan 21, 2025Updated last year
ChoiSG / havoc2nginx
View on GitHub
havoc2nginx is a simple python script that converts Havoc Framework's yaotl malleable c2 profile to Nginx configuration file format. Most…
☆12May 8, 2023Updated 2 years ago
jfjallid / go-cmloot
View on GitHub
A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)
☆16Jul 27, 2024Updated last year
nickvourd / GetWebDAVStatus
View on GitHub
Determine if the WebClient Service (WebDAV) is running on a remote system
☆21Nov 28, 2025Updated 3 months ago
Baron-von-Riedesel / ComView
View on GitHub
Win32 tool that allows to play with COM objects ( create objects of classes, call methods, set/get properties ). Can also create assembly…
☆18May 19, 2022Updated 3 years ago
4l3x777 / dse_pg_bypass
View on GitHub
DSE & PG bypass via BYOVD attack
☆76Jul 12, 2025Updated 7 months ago
aquasecurity / windows-bench
View on GitHub
Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark
☆23Sep 15, 2025Updated 5 months ago
xuanxuanblingbling / linux_kernel_module_exercise
View on GitHub
☆19Oct 11, 2022Updated 3 years ago
XaFF-XaFF / MBR-Overwrite-with-custom-message
View on GitHub
Overwrite MBR and add own custom message
☆16Apr 1, 2020Updated 5 years ago
IncludeSecurity / c2-vulnerabilities
View on GitHub
PoCs of RCEs against open source C2 servers
☆91Sep 28, 2024Updated last year
pwn1sher / RTImplant
View on GitHub
Just another casual shellcode native loader
☆25Feb 3, 2022Updated 4 years ago
rbmm / SDD
View on GitHub
Self Delete DLL
☆23Feb 15, 2024Updated 2 years ago
PurpleWaveIO / CVE-2022-25765-pdfkit-Exploit-Reverse-Shell
View on GitHub
pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…
☆20Dec 6, 2022Updated 3 years ago
synacktiv / AADOutsider-py
View on GitHub
Python3 rewrite of AsOutsider features of AADInternals
☆60Jul 23, 2025Updated 7 months ago
mdsecactivebreach / CVE-2023-26258-ArcServe
View on GitHub
☆23Jun 17, 2024Updated last year
zu1k / beacon_hook_bypass_memscan
View on GitHub
works but not work, cao!
☆24Sep 4, 2021Updated 4 years ago
d0rb / CVE-2023-38545
View on GitHub
This script is designed to exploit a heap buffer overflow vulnerability in a socks5 proxy server.
☆22Mar 13, 2024Updated last year
ErenCanOzmn / CredentialGuardBypass
View on GitHub
By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be byp…
☆14May 25, 2025Updated 9 months ago
zimnyaa / inmembof.py
View on GitHub
A small example of loading BOFs in Python with pure reflection
☆19Jan 26, 2023Updated 3 years ago
Michaeladsl / Patronusx
View on GitHub
☆54Jan 21, 2025Updated last year
laxa / SharpSecretsdump
View on GitHub
Secretsdump C# version only supporting local (live) operation
☆55Apr 20, 2025Updated 10 months ago
0xAbdullah / Offensive-Snippets
View on GitHub
A repository with my code snippets for research/education purposes.
☆53Jul 28, 2023Updated 2 years ago
thiagomayllart / DarkMelkor
View on GitHub
Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
☆28Sep 8, 2021Updated 4 years ago
Teach2Breach / schtask
View on GitHub
Rust implementation, creating a scheduled task programmatically with user logon trigger.
☆47Jun 10, 2025Updated 8 months ago
cybersectroll / TrollRPC
View on GitHub
☆50Jul 9, 2025Updated 7 months ago
ausec-it / bof-registry
View on GitHub
Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry
☆31Feb 11, 2021Updated 5 years ago
0x00Jeff / NT-SYSTEM
View on GitHub
Tool to get NT system shell .
☆24Jul 12, 2021Updated 4 years ago
OmriBaso / WTSImpersonator
View on GitHub
WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
☆122Jul 2, 2024Updated last year
fin3ss3g0d / IoDllProxyLoad
View on GitHub
DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
☆63Mar 19, 2024Updated last year
almandin / krbjack
View on GitHub
A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
☆137Jan 22, 2025Updated last year
0x4d5a-ctf / 38c3_com_talk
View on GitHub
Slides for COM Hijacking AV/EDR Talk on 38c3
☆75Jan 3, 2025Updated last year
hackerhouse-opensource / Gigabyte_ElevatePersist
View on GitHub
Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
☆33Feb 2, 2026Updated 3 weeks ago
citronneur / kerlab
View on GitHub
Kerberos laboratory to better understand and then detecting attack on kerberos
☆70Jun 11, 2021Updated 4 years ago
zer1t0 / cerbero
View on GitHub
Kerberos protocol attacker
☆139Feb 1, 2021Updated 5 years ago
shw9453 / my-ctf-challenges
View on GitHub
shw's CTF challenges
☆27Apr 5, 2021Updated 4 years ago
Tw1sm / pyldapsearch
View on GitHub
Tool for issuing manual LDAP queries which offers bofhound compatible output
☆41Jan 14, 2026Updated last month
slygoo / pssrecon
View on GitHub
☆40Oct 8, 2024Updated last year
exploits-forsale / CVE-2024-21345
View on GitHub
Proof-of-Concept for CVE-2024-21345
☆77Apr 26, 2024Updated last year
oldboy21 / JayFinder
View on GitHub
Find DLLs with RWX section
☆79Jul 3, 2023Updated 2 years ago