bb00 / zer0dump
Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
☆176Updated 2 years ago
Alternatives and similar repositories for zer0dump:
Users that are interested in zer0dump are comparing it to the libraries listed below
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆200Updated 4 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆222Updated 3 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆140Updated 3 years ago
- ☆291Updated 8 months ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆166Updated 2 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆215Updated 4 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆61Updated 6 years ago
- poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)☆174Updated 4 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆474Updated 2 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)☆138Updated 5 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆216Updated last year
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆524Updated 2 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆145Updated 4 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆246Updated 4 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆322Updated 5 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆254Updated 3 years ago
- Dll that can be used for side loading and other attack vector.☆201Updated 4 years ago
- Exploit to SYSTEM for CVE-2021-21551☆236Updated 3 years ago
- Run Rubeus via Rundll32☆198Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆106Updated 5 years ago
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆352Updated 4 years ago
- Asynchronous Password Spraying Tool in C# for Windows Environments☆310Updated last year
- A tool to create obfuscated HTA script.☆176Updated 3 years ago
- Scripts created to help with post exploitation of a Windows host☆96Updated 4 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆230Updated 2 years ago
- Office 365 and Exchange Enumeration☆184Updated 5 years ago
- Executes position independent shellcode from an encrypted zip☆301Updated 4 years ago
- Create a minidump of the LSASS process from memory☆257Updated 2 years ago
- lateral movement techniques that can be used during red team exercises☆269Updated 5 years ago
- An interactive command prompt for red teaming and pentesting. Automatically pushes commands through SOCKS4/5 proxies via proxychains. Opt…☆214Updated 2 years ago