crisprss / PetitPotam
替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, a series of local rights escalation methods have been realized
☆148Updated 3 years ago
Alternatives and similar repositories for PetitPotam:
Users that are interested in PetitPotam are comparing it to the libraries listed below
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆107Updated 4 years ago
- CVE-2020-1472 C++☆81Updated 2 years ago
- ☆3Updated 2 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆88Updated 3 years ago
- CrossC2通信协议API实现☆84Updated 3 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Updated 8 months ago
- 用来存放平时写的一些net内存马,仅用于练手,需要可以自行修改☆87Updated 2 years ago
- 调用x64dbg中的loadll.exe白加黑示例代码☆60Updated 8 months ago
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆147Updated 3 years ago
- 利用 NTLMSSP 探测 Windows 信息☆167Updated 2 years ago
- Zerologon自动化脚本☆88Updated last year
- Zerologon exploit with restore DC password automatically☆132Updated 11 months ago
- 提取域控日志,支持远程提取☆151Updated 2 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆86Updated 3 years ago
- hyscan HengGe Team☆68Updated 3 years ago
- 绕过杀软添加用户☆46Updated 4 years ago
- 窃取当前用户的ssh,sudo密码☆69Updated last year
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆85Updated last year
- 密码收集☆58Updated 2 years ago
- ☆89Updated 2 years ago
- ☆100Updated 2 years ago
- geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.☆160Updated 2 years ago
- An EternalBlue exploit implementation in pure go☆95Updated 4 years ago
- 创建服务持久化☆105Updated 3 years ago
- If you only have hash, you can still operate exchange☆72Updated 3 years ago
- exchange-ssrf-rce☆77Updated 3 years ago
- 根据攻防以及域信息收集经验dump快而有用的域信息☆104Updated last year
- Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具☆107Updated last year
- Bypass AV 用户添加☆167Updated 3 years ago
- Csharp 反射加载dll☆39Updated 3 years ago