cfalta / MicrosoftWontFixList
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
☆949Updated 3 years ago
Alternatives and similar repositories for MicrosoftWontFixList:
Users that are interested in MicrosoftWontFixList are comparing it to the libraries listed below
- Windows Privilege Escalation from User to Domain Admin.☆1,372Updated 2 years ago
- Exploit allowing you to read registry hives as non-admin on Windows 10 and 11☆742Updated 3 years ago
- ☆1,577Updated 9 months ago
- Hide your Powershell script in plain sight. Bypass all Powershell security features☆1,161Updated 5 years ago
- An introduction to Active Directory security☆644Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,573Updated 2 years ago
- ☆2,062Updated 2 years ago
- Active Directory certificate abuse.☆1,620Updated 7 months ago
- PowerShell MachineAccountQuota and DNS exploit tools☆1,289Updated 2 years ago
- Active Directory Integrated DNS dumping by any authenticated user☆989Updated 4 months ago
- A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE☆792Updated 10 months ago
- Some notes and examples for cobalt strike's functionality☆1,010Updated 3 years ago
- PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.☆1,927Updated 7 months ago
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,085Updated 3 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,475Updated last year
- SharpUp is a C# port of various PowerUp functionality.☆1,327Updated last year
- Kerberos unconstrained delegation abuse toolkit☆1,269Updated 2 months ago
- C# Data Collector for the BloodHound Project, Version 3☆532Updated 2 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,520Updated 4 years ago
- C# implementation of harmj0y's PowerView☆1,026Updated last year
- Some usefull Scripts and Executables for Pentest & Forensics☆1,110Updated 4 months ago
- Adversary Tactics - PowerShell Training☆1,539Updated 5 years ago
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆704Updated last year
- Extract credentials from lsass remotely☆2,100Updated 2 months ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,586Updated 2 years ago
- The swiss army knife of LSASS dumping☆1,893Updated 6 months ago
- PoC for Zerologon - all research credits go to Tom Tervoort of Secura☆1,219Updated 4 years ago
- ☆1,452Updated last year
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,251Updated 5 years ago
- Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.☆609Updated 2 years ago