Alternatives and similar repositories for WMIExec

Users that are interested in WMIExec are comparing it to the libraries listed below

• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆125Updated 2 years ago
• rasta-mouse / SCMUACBypass
  ☆100Updated last year
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆112Updated 2 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆176Updated 2 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated last year
• Sq00ky / RunAsPasswd
  A RunAs clone with the ability to specify the password as an argument.
  ☆112Updated 2 years ago
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆211Updated last year
• smokeme / airstrike
  ☆167Updated last year
• RedSiege / DigDug
  ☆82Updated 11 months ago
• mertdas / RedPersist
  ☆220Updated last year
• MzHmO / TGSThief
  My implementation of the GIUDA project in C++
  ☆185Updated 2 years ago
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆115Updated 3 years ago
• RedSiege / AutoFunkt
  Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
  ☆199Updated last year
• p0dalirius / MSSQL-Analysis-Coerce
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆132Updated last year
• Mr-Un1k0d3r / Cookie-and-Handle-Stealer
  C or BOF file to extract WebKit master key to decrypt user cookie
  ☆203Updated last year
• RedTeamPentesting / adauth
  Active Directory Authentication Library
  ☆78Updated 2 weeks ago
• dmcxblue / SharpBlackout
  Terminate AV/EDR leveraging BYOVD attack
  ☆89Updated 4 months ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆140Updated 2 years ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆153Updated last year
• Octoberfest7 / DropSpawn_BOF
  CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
  ☆271Updated 2 years ago
• byinarie / teams_dump
  PoC for dumping and decrypting cookies in the latest version of Microsoft Teams
  ☆132Updated last year
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆117Updated last year
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆223Updated last year
• decoder-it / TokenStealer
  ☆164Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆253Updated last year
• florylsk / SignatureGate
  Weaponized HellsGate/SigFlip
  ☆199Updated 2 years ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆257Updated 2 years ago
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆132Updated last year
• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆278Updated 5 months ago
• xpn / RandomTSScripts
  Collection of random RedTeam scripts.
  ☆206Updated last year