calebstewart / bypass-clm
PowerShell Constrained Language Mode Bypass
☆258Updated 4 years ago
Alternatives and similar repositories for bypass-clm:
Users that are interested in bypass-clm are comparing it to the libraries listed below
- ☆364Updated 3 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆268Updated 3 years ago
- Collection of remote authentication triggers in C#☆475Updated 9 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆320Updated last year
- Inject remote template link into word document for remote template injection☆166Updated 4 years ago
- ☆211Updated 2 years ago
- ☆240Updated 2 years ago
- A collection of code snippets built to assist with breaking chains.☆117Updated 10 months ago
- Collection of some of my own tools with other great open source tools out there packaged into a powershell module☆143Updated 2 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆378Updated 2 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆384Updated 11 months ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆256Updated 2 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆264Updated last year
- Identifies the bytes that Microsoft Defender flags on.☆84Updated 2 years ago
- Payload Generation Framework☆89Updated 11 months ago
- Recovering NTLM hashes from Credential Guard☆333Updated 2 years ago
- ADCS abuser☆275Updated 2 years ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆310Updated 2 years ago
- Bypass AMSI by patching AmsiScanBuffer☆258Updated 3 years ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆112Updated 4 years ago
- A User Impersonation tool - via Token or Shellcode injection☆411Updated 2 years ago
- Custom Queries - Brought Up to BH4.1 syntax☆244Updated 4 months ago
- An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).☆399Updated last year
- Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements☆147Updated 2 years ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆417Updated 2 months ago
- Timeroasting scripts by Tom Tervoort☆271Updated last year
- AD ACL abuse☆285Updated this week
- Simple script to extract useful informations from the combo BloodHound + Neo4j☆228Updated last year
- Dumping LAPS from Python☆261Updated 2 years ago
- Attempt at Obfuscated version of SharpCollection☆205Updated last month