epi052 / osed-scriptsLinks
bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
☆579Updated last year
Alternatives and similar repositories for osed-scripts
Users that are interested in osed-scripts are comparing it to the libraries listed below
Sorting:
- Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)☆755Updated last year
- ☆423Updated 4 years ago
- ☆194Updated last year
- Collection of resources for my preparation to take the OSEE certification.☆291Updated 5 years ago
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆739Updated 9 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,348Updated 2 months ago
- Preparation guide for Offensive Security's PEN-300 course and OSEP certification exam☆226Updated 4 years ago
- Active Directory Labs/exams Review☆260Updated 4 years ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆712Updated 5 months ago
- Windows Local Privilege Escalation from Service Account to System☆873Updated 5 years ago
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,329Updated last year
- ☆281Updated 3 years ago
- This repository contains previous material necessary to opt for the OSEP (Evasion Techniques and Breaching Defenses) certification☆175Updated 4 years ago
- Recover the default privilege set of a LOCAL/NETWORK SERVICE account☆649Updated 5 years ago
- Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)☆458Updated 11 months ago
- Malware development for red teaming workshop☆223Updated 3 years ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆1,029Updated last year
- PEN-300 collection to help you on your exam.☆668Updated 2 months ago
- Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)☆152Updated last year
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆881Updated 9 months ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆341Updated last year
- Just another Powerview alternative but on steroids☆800Updated this week
- ☆163Updated 3 years ago
- Powershell tool to automate Active Directory enumeration.☆1,185Updated last month
- ☆767Updated 2 years ago
- Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to☆400Updated 12 years ago
- Kerberoast with ACL abuse capabilities☆570Updated 10 months ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆1,246Updated last month
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…☆565Updated 8 months ago
- Mind maps / flow charts to help with privilege escalation on the OSCP.☆389Updated 4 years ago