Rvn0xsy / GetWindowsCredentials
通过WindowsAPI获取用户凭证,并保存到文件中
☆193Updated 3 months ago
Related projects: ⓘ
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆148Updated 2 years ago
- C++枚举磁盘列表、遍历指定盘搜索特定类型文件/微信导出密钥,文件回传等功能☆151Updated last year
- ☆96Updated this week
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆87Updated 2 years ago
- CVE-2020-0787的简单回显☆30Updated 2 years ago
- ☆2Updated last year
- CVE-2020-1472 C++☆83Updated 2 years ago
- 提取域控日志,支持远程提取☆141Updated last year
- hyscan HengGe Team☆70Updated 2 years ago
- Cobalt Strike BOF that Add a user to localgroup by samr☆114Updated last year
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆105Updated 3 years ago
- 远程创建任务计划工具☆180Updated 2 years ago
- ☆49Updated last year
- 调用x64dbg中的loadll.exe白加黑示例代码☆59Updated 3 months ago
- Take a screenshot without injection for Cobalt Strike☆169Updated last year
- An EternalBlue exploit implementation in pure go☆95Updated 3 years ago
- impacket编程手册☆93Updated 11 months ago
- ☆85Updated 3 years ago
- 利用 NTLMSSP 探测 Windows 信息☆167Updated 2 years ago
- more conveniently Visual-Studio-BOF-template☆45Updated last year
- Go实现部分Rubeus功能,可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等☆137Updated 2 years ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆145Updated 3 years ago
- Cobalt Strike 二开项目☆172Updated last year
- CobaltStrike and Google Auth twice☆64Updated 2 years ago
- ☆56Updated this week
- Zerologon exploit with restore DC password automatically☆129Updated 6 months ago
- Invoke-Obfuscation-Bypass + PS2EXE 过主流杀软☆52Updated 3 years ago
- ☆32Updated this week
- CrossC2通信协议API实现☆83Updated 3 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆67Updated 7 months ago