bugch3ck / SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
☆310Updated 2 years ago
Alternatives and similar repositories for SharpEfsPotato:
Users that are interested in SharpEfsPotato are comparing it to the libraries listed below
- Attempt at Obfuscated version of SharpCollection☆205Updated last month
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆417Updated 2 months ago
- MS-FSRVP coercion abuse PoC☆287Updated 3 years ago
- Python implementation for PetitPotam☆197Updated 3 years ago
- Collection of remote authentication triggers in C#☆477Updated 10 months ago
- A collection of code snippets built to assist with breaking chains.☆118Updated 10 months ago
- Precompiled executable☆46Updated last month
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆270Updated 3 years ago
- Fileless atexec, no more need for port 445☆364Updated 11 months ago
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆441Updated last month
- Creating a repository with all public Beacon Object Files (BoFs)☆464Updated last year
- 🍊 Orange Tsai EventViewer RCE☆184Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆273Updated 2 years ago
- Powershell Mimikatz Loader☆62Updated 11 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆230Updated last year
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆539Updated last year
- ☆102Updated last year
- Pass the Hash to a named pipe for token Impersonation☆301Updated last year
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆307Updated 10 months ago
- COM Hijacking VOODOO☆268Updated last week
- AD ACL abuse☆288Updated this week
- ☆446Updated 2 years ago
- Shellcode launcher for AV bypass☆215Updated last year
- PowerShell Constrained Language Mode Bypass☆259Updated 4 years ago
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆409Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆320Updated last year
- Credential Guard Bypass Via Patching Wdigest Memory☆321Updated 2 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆207Updated 3 months ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆80Updated 3 years ago
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆447Updated 11 months ago