Prepouce / CoercedPotatoLinks
A Windows potato to privesc
☆373Updated 10 months ago
Alternatives and similar repositories for CoercedPotato
Users that are interested in CoercedPotato are comparing it to the libraries listed below
Sorting:
- PoC Exploit for the NTLM reflection SMB flaw.☆347Updated last week
- Fileless atexec, no more need for port 445☆386Updated last year
- ☆333Updated 4 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆372Updated 2 years ago
- ☆228Updated 7 months ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆454Updated last month
- A Tool that aims to evade av with binary padding☆152Updated 11 months ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆325Updated 2 years ago
- Credential Guard Bypass Via Patching Wdigest Memory☆329Updated 2 years ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆241Updated last year
- AdaptixFramework Extension Kit☆150Updated 3 weeks ago
- Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.☆313Updated last year
- Escalate Service Account To LocalSystem via Kerberos☆395Updated last year
- Windows remote execution multitool☆563Updated 2 weeks ago
- Cobalt Strike BOF for evasive .NET assembly execution☆257Updated 2 months ago
- A beacon object file implementation of PoolParty Process Injection Technique.☆396Updated last year
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆558Updated last year
- C2 redirector base on caddy☆204Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆439Updated last year
- micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.☆190Updated 11 months ago
- UAC Bypass By Abusing Kerberos Tickets☆498Updated last year
- not a reverse-engineered version of the Cobalt Strike Beacon☆369Updated last year
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆276Updated 2 months ago
- Terminate AV/EDR Processes using kernel driver☆346Updated 2 years ago
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆615Updated last month
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆364Updated last year
- Go shellcode loader that combines multiple evasion techniques☆370Updated 2 years ago
- Windows Token Stealing Expert☆472Updated last year
- Some Service DCOM Object and SeImpersonatePrivilege abuse.☆361Updated 2 years ago
- PE to shellcode☆218Updated 5 months ago