Wh04m1001 / CVE-2022-3368

Related projects: ⓘ

• Wh04m1001 / DiagTrackEoP
  ☆87Updated 2 years ago
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆55Updated 5 months ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• Nariod / laz-y
  Automating payload generation for OSEP labs and exam.
  ☆34Updated 2 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• tothi / SharpStay
  .NET project for installing Persistence
  ☆64Updated 2 years ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated 10 months ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆30Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆40Updated 2 years ago
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated last year
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆60Updated last year
• maldevel / gophish
  ☆33Updated this week
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆49Updated 3 years ago
• dru1d-foofus / GetLAPSPassword
  A LAPS dumper written using the impacket library.
  ☆29Updated last year
• Wh04m1001 / MSIExecEoP
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆29Updated last year
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• NVISOsecurity / cs2br-bof
  ☆54Updated last month
• waawaa / AMSI_Rubeus_bypass
  ☆61Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆74Updated 10 months ago
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆43Updated last year
• bitsadmin / dir2json
  Tool for efficient directory enumeration
  ☆55Updated 3 months ago
• 0xsp-SRD / callback_injection-Csharp
  this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…
  ☆81Updated 2 years ago
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆51Updated last year
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆36Updated 2 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆90Updated last year
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆86Updated 2 years ago
• KINGSABRI / MSI-AlwaysInstallElevated
  A Collection of templates that can be used for abusing window's AlwaysInstallElevated policy
  ☆27Updated last year
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆74Updated last year
• Crypt0s / DelegationBOF
  ☆135Updated 2 years ago
• DallasFR / EnumStrike
  ☆60Updated this week