TarlogicSecurity / EoPLoadDriverLinks
Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)
☆142Updated 6 years ago
Alternatives and similar repositories for EoPLoadDriver
Users that are interested in EoPLoadDriver are comparing it to the libraries listed below
Sorting:
- Impersonating authentication over HTTP and/or named pipes.☆134Updated 4 years ago
- Loads a custom dll in system32 via diaghub.☆76Updated 5 years ago
- Weaponizing for privileged file writes bugs with windows problem reporting☆224Updated 3 years ago
- Scripts created to help with post exploitation of a Windows host☆97Updated 4 years ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆168Updated 2 years ago
- Use CVE-2020-0668 to perform an arbitrary privileged file move operation.☆222Updated 5 years ago
- Juicy Potato for x86 Windows☆120Updated 5 years ago
- ☆142Updated last year
- ☆81Updated 5 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆63Updated 6 years ago
- Run Rubeus via Rundll32☆202Updated 5 years ago
- Example DLL to load from Windows NetShell☆180Updated 8 years ago
- ☆219Updated 2 years ago
- One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/☆151Updated 4 years ago
- C implementation of the file-less UAC exploit☆74Updated 8 years ago
- Changes for Visual Studio 2013☆117Updated 9 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆143Updated 3 years ago
- 64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.☆129Updated 2 years ago
- Bypass AMSI by patching AmsiScanBuffer☆265Updated 4 years ago
- ☆388Updated 4 years ago
- Python implementation for PetitPotam☆200Updated 3 years ago
- ADCS abuser☆287Updated 2 years ago
- Windbg Readable & Dark Green Theme - Own Use☆45Updated 6 years ago
- Dump stuff without touching disk☆162Updated 4 years ago
- Bypass for PowerShell Constrained Language Mode☆392Updated 3 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆227Updated 2 years ago
- Payload Generation Framework☆91Updated last year
- PowerShell Constrained Language Mode Bypass☆267Updated 4 years ago
- Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.☆204Updated 7 years ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆122Updated 4 years ago