OneLogicalMyth / zeroday-powershell
A PowerShell example of the Windows zero day priv esc
☆326Updated 6 years ago
Alternatives and similar repositories for zeroday-powershell
Users that are interested in zeroday-powershell are comparing it to the libraries listed below
Sorting:
- Forward local or remote tcp ports through SMB pipes.☆295Updated 4 years ago
- UAC 0day, all day!☆278Updated 7 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆320Updated 7 years ago
- APT34/OILRIG leak☆231Updated 6 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆523Updated 2 years ago
- Remote Recon and Collection☆450Updated 7 years ago
- Teaching old shellcode new tricks☆205Updated 7 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆149Updated 6 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆307Updated 5 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆313Updated 7 years ago
- ☆229Updated 7 years ago
- ☆272Updated 2 years ago
- Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…☆197Updated 7 years ago
- Exploits and advisories☆190Updated 4 years ago
- Fileless web browser information extraction☆218Updated 7 years ago
- Local UNIX PrivEsc Aggregation☆245Updated 9 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆369Updated last year
- This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I ge…☆352Updated 6 years ago
- How To Execute Shellcode via HTA☆139Updated 7 years ago
- WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…☆352Updated 6 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆227Updated 7 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆395Updated 4 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆257Updated 6 years ago
- DNS-Persist is a post-exploitation agent which uses DNS for command and control.☆210Updated 7 years ago
- RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging. DerbyCon 2017 Talk: h…☆306Updated 7 years ago
- A WebDAV PROPFIND C2 tool☆119Updated 5 years ago
- Public work for CVE-2019-0708☆292Updated 5 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆387Updated 6 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆237Updated 2 years ago
- CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.☆176Updated 7 years ago