RedCursorSecurityConsulting / CVE-2020-0668

Related projects ⓘ

Alternatives and complementary repositories for CVE-2020-0668

• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆60Updated 5 years ago
• newsoft / adduser
  Programmatically create an administrative user under Windows
  ☆178Updated 7 years ago
• sailay1996 / cve-2020-1337-poc
  poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
  ☆172Updated 4 years ago
• sailay1996 / WerTrigger
  Weaponizing for privileged file writes bugs with windows problem reporting
  ☆208Updated 2 years ago
• AlmondOffSec / PoCs
  Proof-of-concept code for various bugs
  ☆107Updated 3 weeks ago
• hausec / ProxyLogon
  ☆290Updated 4 months ago
• Ridter / cve-2020-0688
  cve-2020-0688
  ☆322Updated last year
• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆123Updated 4 years ago
• BC-SECURITY / Invoke-PrintDemon
  This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.
  ☆198Updated 4 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆163Updated 2 years ago
• bytecod3r / Cobaltstrike-Aggressor-Scripts-Collection
  Collection of tested Cobaltstrike aggressor scripts.
  ☆109Updated 4 years ago
• offsecginger / AggressorScripts
  Various Aggressor Scripts I've Created.
  ☆148Updated 2 years ago
• goichot / CVE-2020-3153
  Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal
  ☆104Updated 4 years ago
• waldo-irc / CVE-2021-21551
  Exploit to SYSTEM for CVE-2021-21551
  ☆237Updated 3 years ago
• fox-it / LDAPFragger
  ☆189Updated 4 years ago
• rxwx / spoolsystem
  Print Spooler Named Pipe Impersonation for Cobalt Strike
  ☆258Updated 4 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆68Updated 4 years ago
• RedSiege / hot-manchego
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆143Updated 4 years ago
• pkb1s / SharpAllowedToAct
  Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)
  ☆185Updated 3 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆316Updated 5 years ago
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆198Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆144Updated 4 years ago
• Arno0x / NtlmRelayToEWS
  ntlm relay attack to Exchange Web Services
  ☆328Updated 6 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆197Updated 6 years ago
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆244Updated 4 years ago
• jfmaes / SharpZipRunner
  Executes position independent shellcode from an encrypted zip
  ☆300Updated 3 years ago
• nopfor / ntlm_challenger
  Parse NTLM challenge messages over HTTP and SMB
  ☆143Updated 2 years ago