Wh04m1001 / CVE-2023-20178
☆90Updated last year
Related projects ⓘ
Alternatives and complementary repositories for CVE-2023-20178
- ☆181Updated last year
- ☆89Updated 2 years ago
- ☆159Updated last year
- 🐾Dogwalk PoC (using diagcab file to obtain RCE on windows)☆80Updated 2 years ago
- To audit the security of read-only domain controllers☆113Updated 11 months ago
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆147Updated 2 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆134Updated 5 months ago
- A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).☆93Updated last year
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆250Updated last year
- Find .net assemblies locally☆88Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆77Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆94Updated last year
- ☆112Updated last year
- My implementation of the GIUDA project in C++☆155Updated last year
- Run Your Payload Without Running Your Payload☆176Updated 2 years ago
- Set of python scripts which perform different ways of command execution via WMI protocol.☆158Updated last year
- ☆217Updated last year
- PoC to coerce authentication from Windows hosts using MS-WSP☆222Updated last year
- PoC for dumping and decrypting cookies in the latest version of Microsoft Teams☆126Updated 11 months ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆173Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆166Updated last year
- The Official Sliver Armory☆82Updated 3 months ago
- Weaponized HellsGate/SigFlip☆192Updated last year
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆124Updated last year
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆130Updated last month
- WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"☆113Updated 4 months ago
- Local & remote Windows DLL Proxying☆161Updated 4 months ago
- ☆101Updated 9 months ago