Prepouce / CoercedPotatoLinks
A Windows potato to privesc
☆380Updated last year
Alternatives and similar repositories for CoercedPotato
Users that are interested in CoercedPotato are comparing it to the libraries listed below
Sorting:
- PoC Exploit for the NTLM reflection SMB flaw.☆487Updated 2 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆391Updated 2 years ago
- Fileless atexec, no more need for port 445☆395Updated last year
- ☆231Updated 9 months ago
- AdaptixFramework Extension Kit☆215Updated 3 weeks ago
- A Tool that aims to evade av with binary padding☆154Updated last year
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆481Updated 3 months ago
- ☆337Updated 6 months ago
- Credential Guard Bypass Via Patching Wdigest Memory☆330Updated 2 years ago
- C2 redirector base on caddy☆206Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆445Updated last year
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆245Updated last year
- PE to shellcode☆233Updated 7 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆405Updated last year
- Windows Token Stealing Expert☆474Updated last year
- Windows remote execution multitool☆661Updated 2 weeks ago
- Escalate Service Account To LocalSystem via Kerberos☆397Updated last year
- UAC Bypass By Abusing Kerberos Tickets☆499Updated 2 years ago
- DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…☆438Updated last year
- Some Service DCOM Object and SeImpersonatePrivilege abuse.☆364Updated 2 years ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆574Updated last year
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆284Updated 4 months ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆328Updated 2 years ago
- Terminate AV/EDR Processes using kernel driver☆348Updated 2 years ago
- Next Generation C2 Framework☆358Updated this week
- RCE exploit for CVE-2023-3519☆227Updated 2 years ago
- An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memor…☆440Updated 4 months ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆319Updated last year
- Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles☆398Updated 2 years ago
- Go shellcode loader that combines multiple evasion techniques☆378Updated 2 years ago