bugch3ck / SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
☆309Updated 2 years ago
Alternatives and similar repositories for SharpEfsPotato:
Users that are interested in SharpEfsPotato are comparing it to the libraries listed below
- Attempt at Obfuscated version of SharpCollection☆203Updated last week
- Collection of remote authentication triggers in C#☆473Updated 9 months ago
- A collection of code snippets built to assist with breaking chains.☆116Updated 9 months ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆412Updated last month
- 🍊 Orange Tsai EventViewer RCE☆181Updated 2 years ago
- MS-FSRVP coercion abuse PoC☆282Updated 3 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆264Updated 3 years ago
- Creating a repository with all public Beacon Object Files (BoFs)☆457Updated last year
- Python implementation for PetitPotam☆193Updated 3 years ago
- Precompiled executable☆42Updated 2 years ago
- Shellcode launcher for AV bypass☆217Updated last year
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆534Updated last year
- Pass the Hash to a named pipe for token Impersonation☆299Updated last year
- Fileless atexec, no more need for port 445☆354Updated 10 months ago
- PowerShell Constrained Language Mode Bypass☆247Updated 4 years ago
- COM Hijacking VOODOO☆261Updated 3 weeks ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆431Updated last week
- AD ACL abuse☆279Updated this week
- Powershell Mimikatz Loader☆61Updated 10 months ago
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆294Updated 9 months ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆200Updated last month
- ☆234Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆273Updated 3 months ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆401Updated 11 months ago
- ☆99Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆256Updated 2 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆199Updated 2 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆229Updated last year
- Recovering NTLM hashes from Credential Guard☆332Updated 2 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆259Updated last year