WKL-Sec / WMIExecLinks
Set of python scripts which perform different ways of command execution via WMI protocol.
☆160Updated 2 years ago
Alternatives and similar repositories for WMIExec
Users that are interested in WMIExec are comparing it to the libraries listed below
Sorting:
- ACL abuse swiss-knife☆125Updated 2 years ago
- ☆100Updated last year
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆112Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- Lateral Movement☆124Updated last year
- A RunAs clone with the ability to specify the password as an argument.☆112Updated 2 years ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Updated last year
- ☆167Updated last year
- ☆82Updated 11 months ago
- ☆220Updated last year
- My implementation of the GIUDA project in C++☆185Updated 2 years ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆115Updated 3 years ago
- Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles☆199Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆132Updated last year
- C or BOF file to extract WebKit master key to decrypt user cookie☆203Updated last year
- Active Directory Authentication Library☆78Updated 2 weeks ago
- Terminate AV/EDR leveraging BYOVD attack☆89Updated 4 months ago
- Github as C2 Demonstration , free API = free C2 Infrastructure☆140Updated 2 years ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆153Updated last year
- CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking☆271Updated 2 years ago
- PoC for dumping and decrypting cookies in the latest version of Microsoft Teams☆132Updated last year
- A C# port from Invoke-GhostTask☆117Updated last year
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆223Updated last year
- ☆164Updated last year
- PoC to coerce authentication from Windows hosts using MS-WSP☆253Updated last year
- Weaponized HellsGate/SigFlip☆199Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆257Updated 2 years ago
- Abuse leaked token handles.☆132Updated last year
- WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.☆278Updated 5 months ago
- Collection of random RedTeam scripts.☆206Updated last year