Alternatives and similar repositories for ZeroLogon

Users that are interested in ZeroLogon are comparing it to the libraries listed below

• crisprss / PrintSpoofer
  PrintSpoofer的反射dll实现，结合Cobalt Strike使用
  ☆88Updated 3 years ago
• crisprss / PetitPotam
  替代PrintBug用于本地提权的新方式，主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …
  ☆149Updated 3 years ago
• scareing / cmd2shellcode
  cmd2shellcode
  ☆79Updated 4 years ago
• FeigongSec / NTLMINFO
  ☆46Updated 4 years ago
• Jumbo-WJB / search_rbcd
  Search msDS-AllowedToActOnBehalfOfOtherIdentity
  ☆35Updated 3 years ago
• uknowsec / CreateService
  创建服务持久化
  ☆107Updated 4 years ago
• crisprss / net_memory_webshell
  用来存放平时写的一些net内存马，仅用于练手，需要可以自行修改
  ☆87Updated 3 years ago
• kyxiaxiang / CrackSleeve4.7
  ☆102Updated 2 years ago
• GamehunterKaan / Plog
  A Mimikatz For Only Extracting Login Passwords.(Bypasses Most AV's)
  ☆58Updated 3 years ago
• Richard-Tang / CrossC2-C2Profile
  CrossC2通信协议API实现
  ☆84Updated 4 years ago
• 1y0n / SharpRDPBatch
  批量检查远程桌面密码或ntlm是否正确
  ☆41Updated 4 years ago
• XTeam-Wing / SharpMimikatz
  Csharp 反射加载dll
  ☆41Updated 4 years ago
• burpheart / dnsc2
  一个基于DNS隧道的简单C2
  ☆59Updated 3 years ago
• Rvn0xsy / GetWindowsCredentials
  通过WindowsAPI获取用户凭证，并保存到文件中
  ☆194Updated last year
• Rvn0xsy / Invoke-x64dbg-loaddll
  调用x64dbg中的loadll.exe白加黑示例代码
  ☆64Updated last year
• Ridter / GetMail
  利用NTLM Hash读取Exchange邮件
  ☆59Updated 2 years ago
• yanghaoi / LaunchSystemCmd
  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。
  ☆33Updated 3 years ago
• woaiqiukui / sam-the-admin-maq
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…
  ☆22Updated last year
• M-Kings / apitool
  Windows Api调用，用来绕过杀软添加用户
  ☆22Updated 4 years ago
• jiushill / wmi-hack-py
  ☆49Updated 2 years ago
• Ridter / MSSQL_CLR
  MSSQL CLR for pentest.
  ☆55Updated 2 years ago
• Syst2m / FunnyMeterpreter
  与反病毒软件老大哥们的打闹日常
  ☆13Updated 6 years ago
• Jumbo-WJB / SharpAllowedToAct-Modify
  resource-based constrained delegation RBCD
  ☆45Updated 3 years ago
• timwhitez / Doge-DumpMem
  dump lsass
  ☆37Updated 3 years ago
• dust-life / run_pe
  ☆50Updated 4 years ago
• JDArmy / PwdCollection
  密码收集
  ☆58Updated 3 years ago
• howmp / iisproxy
  通过websocket在IIS8(Windows Server 2012)以上实现socks5代理
  ☆89Updated last year
• mstxq17 / CVE-2021-1675_RDL_LPE
  PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。
  ☆148Updated 4 years ago
• idiotc4t / sharpwmi
  (批量化改造)sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆108Updated 4 years ago
• JDArmy / NO445-lateral-movement
  command execute without 445 port
  ☆52Updated 3 years ago