aleenzz/SCExec

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/aleenzz/SCExec)

aleenzz / SCExec

☆30

Alternatives and similar repositories for SCExec

Users that are interested in SCExec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Jumbo-WJB / SharpSniper-Modify
View on GitHub
query specific user and login IP from remote machine
☆18Nov 19, 2022Updated 3 years ago
ASkyeye / Artillery
View on GitHub
CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
☆14Dec 30, 2023Updated 2 years ago
knightswd / NoPacScan
View on GitHub
NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
☆86Feb 17, 2022Updated 4 years ago
P1-Team / ldapsearch-ad
View on GitHub
Python3 script to quickly get various information from a domain controller through his LDAP service.
☆14Jan 4, 2022Updated 4 years ago
dust-life / Free445-BOF
View on GitHub
☆26Apr 24, 2025Updated 11 months ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
aleenzz / ADExplorerX
View on GitHub
☆46Jun 25, 2024Updated last year
Hagrid29 / BOF-SprayAD
View on GitHub
Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
☆47Mar 4, 2023Updated 3 years ago
wh1tor / getsystem-for-cobaltstrike
View on GitHub
Use powershell to getsystem with token dumplication
☆10Dec 6, 2019Updated 6 years ago
Like0x / SharpBlock
View on GitHub
A method of bypassing EDR's active projection DLL's by preventing entry point exection
☆24May 10, 2021Updated 4 years ago
0x727 / UserRegEnum_0x727
View on GitHub
域内普通域用户权限查找域内所有计算机上登录的用户
☆150Apr 20, 2023Updated 2 years ago
itlabbet / uac-bypass
View on GitHub
UAC-ByPass utils
☆11Jan 28, 2022Updated 4 years ago
p1d3er / KillEverything
View on GitHub
Kill Everything AV/EDR
☆27Nov 18, 2024Updated last year
Rvn0xsy / GetWindowsCredentials
View on GitHub
通过WindowsAPI获取用户凭证，并保存到文件中
☆194Jun 18, 2024Updated last year
Jumbo-WJB / smbbrute
View on GitHub
smb爆破工具
☆19May 7, 2021Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
RowTeam / SharpExchangeKing
View on GitHub
Exchange 服务器安全性的辅助测试工具
☆332Jul 21, 2023Updated 2 years ago
Amulab / advul
View on GitHub
ad vulnerability scanner
☆74Dec 21, 2023Updated 2 years ago
mabangde / SharpGetUserLoginIPRPC
View on GitHub
提取域控日志，支持远程提取
☆170Mar 17, 2025Updated last year
lz520520 / mimikatz
View on GitHub
A little tool to play with Windows security
☆12Jan 21, 2026Updated 2 months ago
AgeloVito / adduserbysamr-bof
View on GitHub
Cobalt Strike BOF that Add a user to localgroup by samr
☆135Nov 30, 2022Updated 3 years ago
TryGOTry / Debug-Nps
View on GitHub
在原版nps的基础上，增加了nps探测，以及对应的利用方式（如获取cookie，页面等），进行一些简单的二开。未经过大量测试，可能存在bug。
☆21Aug 5, 2025Updated 8 months ago
timwhitez / Doge-DumpMem
View on GitHub
dump lsass
☆37May 24, 2022Updated 3 years ago
Schira4396 / HrmsTamper
View on GitHub
适用于某EHR&HRM的加解密工具，可直接用于sqlmap
☆25Jan 14, 2024Updated 2 years ago
timwhitez / Freeze-Common
View on GitHub
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
☆14Sep 30, 2022Updated 3 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
jiushill / wmi-hack-py
View on GitHub
☆49May 8, 2023Updated 2 years ago
JDArmy / RPCSCAN
View on GitHub
RPC远程主机信息匿名扫描工具
☆319Sep 30, 2022Updated 3 years ago
Ridter / PySQLTools
View on GitHub
Mssql利用工具
☆278Aug 7, 2023Updated 2 years ago
1ight-2020 / GoRottenTomato
View on GitHub
Go实现部分Rubeus功能，可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等
☆142May 5, 2022Updated 3 years ago
Jumbo-WJB / portreuse
View on GitHub
portreuse reuseport 端口复用
☆61Aug 27, 2023Updated 2 years ago
0neAtSec / SharpDomainInfo
View on GitHub
根据攻防以及域信息收集经验dump快而有用的域信息
☆103Aug 15, 2023Updated 2 years ago
timwhitez / memmod
View on GitHub
Fork & modify of Wireguard's Memmod
☆34Aug 2, 2023Updated 2 years ago
lzzbb / Adinfo
View on GitHub
域信息收集工具
☆413Sep 16, 2022Updated 3 years ago
M0nster3 / ExchangePE
View on GitHub
Asset scanning by dictionary stitching Domain to identify Exchange Servers versions
☆45Mar 2, 2023Updated 3 years ago
NordVPN Special Discount Offer • Ad
Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
baiyies / ScreenshotBOFPlus
View on GitHub
Take a screenshot without injection for Cobalt Strike
☆205Jun 7, 2023Updated 2 years ago
Ivan1ee / NET-Command
View on GitHub
.NET 执行命令的方法合集
☆24Apr 9, 2023Updated 3 years ago
nick-frischkorn / TokenStripBOF
View on GitHub
Beacon Object File to delete token privileges and lower the integrity level to untrusted for a specified process
☆47Jun 15, 2022Updated 3 years ago
Jumbo-WJB / PTH_Exchange
View on GitHub
If you only have hash, you can still operate exchange
☆77Oct 21, 2021Updated 4 years ago
timwhitez / Doge-COFFLdr
View on GitHub
Its a coff loader ported to go( Modified by TimWhite )
☆26Jul 17, 2023Updated 2 years ago
BeichenDream / SharpToken
View on GitHub
Windows Token Stealing Expert
☆486Nov 24, 2023Updated 2 years ago
jbaines-r7 / blankspace
View on GitHub
Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)
☆64Feb 14, 2022Updated 4 years ago