Alternatives and similar repositories for UltimateWDACBypassList:

Users that are interested in UltimateWDACBypassList are comparing it to the libraries listed below

• mdsecactivebreach / Farmer
  ☆365Updated 3 years ago
• deepinstinct / Lsass-Shtinkering
  ☆375Updated 2 years ago
• Mayyhem / SharpSCCM
  A C# utility for interacting with SCCM
  ☆616Updated 6 months ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆835Updated 3 years ago
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆386Updated 11 months ago
• deepinstinct / LsassSilentProcessExit
  Command line interface to dump LSASS memory to disk via SilentProcessExit
  ☆443Updated 4 years ago
• subat0mik / whoamsi
  An effort to track security vendors' use of Microsoft's Antimalware Scan Interface
  ☆244Updated 3 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆479Updated last year
• S3cur3Th1sSh1t / SharpImpersonation
  A User Impersonation tool - via Token or Shellcode injection
  ☆411Updated 2 years ago
• cfalta / PowerShellArmoury
  A PowerShell armoury for security guys and girls
  ☆472Updated last year
• GhostPack / ForgeCert
  "Golden" certificates
  ☆660Updated 7 months ago
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆354Updated 3 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆259Updated 4 years ago
• WithSecureLabs / physmem2profit
  Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely
  ☆414Updated 2 years ago
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆467Updated this week
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆380Updated this week
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆515Updated last month
• nettitude / SharpWSUS
  ☆446Updated 2 years ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆320Updated last year
• mandiant / ADFSpoof
  ☆387Updated 7 months ago
• GoSecure / pywsus
  Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.
  ☆302Updated 2 years ago
• MWR-CyberSec / PXEThief
  PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…
  ☆355Updated 9 months ago
• zyn3rgy / LdapRelayScan
  Check for LDAP protections regarding the relay of NTLM authentication
  ☆485Updated 4 months ago
• tomcarver16 / ADSearch
  A tool to help query AD via the LDAP protocol
  ☆522Updated 6 months ago
• Dec0ne / ShadowSpray
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆459Updated 2 years ago
• jsecurity101 / MSRPC-to-ATTACK
  A repository that maps commonly used attacks using MSRPC protocols to ATT&CK
  ☆322Updated last year
• med0x2e / NTLMRelay2Self
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆400Updated last year
• latortuga71 / TortugaToolKit
  Collection of some of my own tools with other great open source tools out there packaged into a powershell module
  ☆144Updated 2 years ago
• improsec / SharpEventPersist
  Persistence by writing/reading shellcode from Event Log
  ☆368Updated 2 years ago
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆477Updated 10 months ago