Alternatives and similar repositories for RazerEoP

Users that are interested in RazerEoP are comparing it to the libraries listed below

• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 3 years ago
• Wh04m1001 / UserManagerEoP
  ☆81Updated last year
• grigoritchy / pocs
  ☆72Updated last year
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆54Updated 3 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 3 years ago
• ihack4falafel / Dell-Driver-EoP-CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆32Updated 3 years ago
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆63Updated 3 years ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆36Updated last year
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆55Updated 4 years ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated 2 years ago
• tothi / SharpStay
  .NET project for installing Persistence
  ☆63Updated 3 years ago
• tothi / PowerLessShell
  Run PowerShell command without invoking powershell.exe
  ☆35Updated 3 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆41Updated 2 years ago
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 3 years ago
• S3cur3Th1sSh1t / SharpOxidResolver
  IOXIDResolver from AirBus Security/PingCastle
  ☆51Updated 4 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 3 years ago
• OtterHacker / LabS4U2Self
  ☆31Updated 3 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆66Updated 3 years ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• CodeXTF2 / HavocNotion
  A simple ExternalC2 POC for Havoc C2. Communicates over Notion using a custom python agent, handler and extc2 channel. Not operationally …
  ☆88Updated 2 years ago
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆55Updated 2 years ago
• ceramicskate0 / SharpLeftOvers
  A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup
  ☆39Updated 2 years ago
• 3sjay / sploits
  some sploits
  ☆18Updated last year
• ariary / DogWalk-rce-poc
  🐾Dogwalk PoC (using diagcab file to obtain RCE on windows)
  ☆79Updated 3 years ago
• snovvcrash / BOFs
  Beacon Object Files (not Buffer Overflows)
  ☆56Updated 2 years ago
• Wh04m1001 / CVE-2022-3368
  ☆29Updated 2 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago