Alternatives and similar repositories for CVE-2022-3368

Users that are interested in CVE-2022-3368 are comparing it to the libraries listed below

• Nariod / laz-y
  Automating payload generation for OSEP labs and exam.
  ☆34Updated 3 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• tothi / SharpStay
  .NET project for installing Persistence
  ☆63Updated 3 years ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Updated 2 years ago
• Wh04m1001 / RazerEoP
  ☆27Updated 2 years ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆61Updated 3 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆65Updated 7 months ago
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 3 years ago
• 0xsp-SRD / callback_injection-Csharp
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆86Updated 3 years ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆106Updated 2 years ago
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 2 years ago
• ariary / DogWalk-rce-poc
  🐾Dogwalk PoC (using diagcab file to obtain RCE on windows)
  ☆80Updated 3 years ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 2 years ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆53Updated 4 years ago
• KINGSABRI / MSI-AlwaysInstallElevated
  A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy
  ☆34Updated 2 years ago
• GoSecure / ldap-scanner
  Checks for signature requirements over LDAP
  ☆97Updated 2 years ago
• ly4k / Pypykatz
  Modified version of Pypykatz to print encrypted credentials
  ☆52Updated 2 years ago
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆31Updated 2 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆88Updated 2 years ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆51Updated 4 years ago
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆63Updated 3 years ago
• Dfte / Impersonate
  Binary and CrackMapExec module to impersonate tokens on a windows machine
  ☆46Updated 3 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆41Updated last year
• shantanu561993 / DLL-Sideload
  ☆41Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆84Updated last year
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆38Updated 3 years ago
• bitsadmin / dir2json
  Tool for efficient directory enumeration
  ☆58Updated 10 months ago
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 3 years ago