替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, a series of local rights escalation methods have been realized
☆149Mar 13, 2022Updated 3 years ago
Alternatives and similar repositories for PetitPotam
Users that are interested in PetitPotam are comparing it to the libraries listed below
Sorting:
- Misc TaskScheduler Plays☆238Sep 27, 2022Updated 3 years ago
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Apr 20, 2023Updated 2 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆264Nov 25, 2022Updated 3 years ago
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆344Apr 10, 2022Updated 3 years ago
- 帆软/致远密码解密工具☆360Jul 29, 2021Updated 4 years ago
- RPC远程主机信息匿名扫描工具☆317Sep 30, 2022Updated 3 years ago
- 应对渗透中极限环境下命令回显 & 文件落地☆132Jul 1, 2022Updated 3 years ago
- 调用x64dbg中的loadll.exe白加黑示例代码☆65Jun 18, 2024Updated last year
- Windows Token Stealing Expert☆486Nov 24, 2023Updated 2 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- C++枚举磁盘列表、遍历指定盘搜索特定类型文件/微信导出密钥,文件回传等功能☆153Jan 9, 2023Updated 3 years ago
- Windows活动目录中的LDAP信息收集工具☆234Oct 9, 2021Updated 4 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Jan 8, 2021Updated 5 years ago
- Mssql利用工具☆276Aug 7, 2023Updated 2 years ago
- 防火墙出网探测工具,内网穿透型socks5代理☆269Nov 12, 2021Updated 4 years ago
- ☆295May 7, 2022Updated 3 years ago
- UAC bypass for x64 Windows 7 - 11(无弹窗版)☆281Sep 5, 2022Updated 3 years ago
- 基于golang实现的impacket☆246Aug 28, 2023Updated 2 years ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- 域内自动化信息搜集利用工具☆468Oct 24, 2023Updated 2 years ago
- Memshell☆292Dec 7, 2021Updated 4 years ago
- C# 读取本机对外RDP连接记录和其他主机对该主机的连接记录,从而在内网渗透中获取更多可通内网网段信息以及定位运维管理人员主机☆431Jan 28, 2021Updated 5 years ago
- 利用白名单文件 cdb.exe 执行 shellcode☆215Jun 29, 2022Updated 3 years ago
- 这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。☆638Apr 4, 2021Updated 4 years ago
- 提取域控日志,支持远程提取☆171Mar 17, 2025Updated 11 months ago
- 获取Exchange信息的小工具☆232Oct 26, 2023Updated 2 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- PrintSpoofer的反射dll实现,结合Cobalt Strike使用☆87Oct 7, 2021Updated 4 years ago
- Go实现部分Rubeus功能,可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等☆142May 5, 2022Updated 3 years ago
- springboot跨线程注入内存马☆123Apr 10, 2022Updated 3 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆195Jun 18, 2024Updated last year
- MSSQL CLR for pentest.☆56Aug 7, 2023Updated 2 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆427Mar 12, 2024Updated last year
- Yet another SharpSphere☆227Aug 1, 2021Updated 4 years ago
- ☆88Jun 28, 2022Updated 3 years ago
- dump lsass进程工具☆561Jul 20, 2023Updated 2 years ago
- JavaPassDump☆272Jan 7, 2022Updated 4 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- 获取服务器或域控登录日志☆276Sep 8, 2023Updated 2 years ago