WKL-Sec / WMIExecLinks
Set of python scripts which perform different ways of command execution via WMI protocol.
☆162Updated 2 years ago
Alternatives and similar repositories for WMIExec
Users that are interested in WMIExec are comparing it to the libraries listed below
Sorting:
- ACL abuse swiss-knife☆125Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆114Updated 2 years ago
- A RunAs clone with the ability to specify the password as an argument.☆112Updated 2 years ago
- ☆100Updated 2 years ago
- Havoc C2 profile generator☆96Updated 2 months ago
- Lateral Movement☆124Updated last year
- Github as C2 Demonstration , free API = free C2 Infrastructure☆141Updated 2 years ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated 2 years ago
- ☆219Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆123Updated 3 years ago
- Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles☆199Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆153Updated last year
- Repository contains psexec, which will help to exploit the forgotten pipe☆171Updated 11 months ago
- Active Directory Authentication Library☆80Updated last month
- Evasive Golang Loader☆135Updated last year
- ☆92Updated 2 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆189Updated 3 years ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆83Updated last year
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆74Updated 3 years ago
- C or BOF file to extract WebKit master key to decrypt user cookie☆205Updated last year
- ☆170Updated last year
- PoC for dumping and decrypting cookies in the latest version of Microsoft Teams☆131Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆53Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆208Updated 11 months ago
- ☆232Updated last year
- ☆119Updated 6 months ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- My implementation of the GIUDA project in C++☆186Updated 2 years ago