epi052 / osed-scriptsLinks
bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
☆573Updated last year
Alternatives and similar repositories for osed-scripts
Users that are interested in osed-scripts are comparing it to the libraries listed below
Sorting:
- Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)☆747Updated last year
- ☆419Updated 4 years ago
- ☆191Updated last year
- Collection of resources for my preparation to take the OSEE certification.☆287Updated 5 years ago
- Active Directory Labs/exams Review☆259Updated 4 years ago
- Preparation guide for Offensive Security's PEN-300 course and OSEP certification exam☆224Updated 4 years ago
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆735Updated 8 months ago
- ☆279Updated 3 years ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆702Updated 4 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,337Updated 2 months ago
- Windows Local Privilege Escalation from Service Account to System☆873Updated 5 years ago
- Recover the default privilege set of a LOCAL/NETWORK SERVICE account☆642Updated 5 years ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,313Updated last year
- Malware development for red teaming workshop☆222Updated 3 years ago
- This repository contains previous material necessary to opt for the OSEP (Evasion Techniques and Breaching Defenses) certification☆173Updated 4 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆336Updated last year
- Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)☆151Updated last year
- Just another Powerview alternative but on steroids☆784Updated 3 weeks ago
- Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)☆452Updated 10 months ago
- ☆162Updated 3 years ago
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆563Updated 8 months ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆883Updated 8 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,018Updated last year
- Kerberoast with ACL abuse capabilities☆558Updated 9 months ago
- PEN-300 collection to help you on your exam.☆657Updated last month
- Powershell tool to automate Active Directory enumeration.☆1,179Updated 3 weeks ago
- Python version of the C# tool for "Shadow Credentials" attacks☆802Updated 2 weeks ago
- Notes compiled for the OSCP exam.☆157Updated 3 years ago
- Cheatsheet for the commands learned in Attack and Defense Active Directory Lab☆226Updated 2 years ago
- Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to☆395Updated 12 years ago