fashionproof / EnableAllTokenPrivs

Related projects ⓘ

Alternatives and complementary repositories for EnableAllTokenPrivs

• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆77Updated 3 years ago
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆85Updated 7 months ago
• CsEnox / SeManageVolumeExploit
  ☆79Updated last year
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆108Updated 4 years ago
• rvazarkar / GMSAPasswordReader
  ☆198Updated last year
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆115Updated 6 months ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆81Updated 2 years ago
• byronkg / SharpGPOAbuse
  Precompiled executable
  ☆37Updated last year
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆67Updated 2 months ago
• garrettfoster13 / aced
  ☆150Updated 9 months ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆63Updated 11 months ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆74Updated 2 years ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆77Updated 2 years ago
• xct / hashgrab
  generate payloads that force authentication against an attacker machine
  ☆91Updated 2 years ago
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆96Updated 2 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆252Updated 3 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆159Updated 3 years ago
• xct / winpspy
  CLI monitor for windows process- & file activity
  ☆76Updated 3 years ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆135Updated 4 months ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆75Updated 2 years ago
• timip / OSEP
  PEN-300/OSEP Public resources for PEN-300 Training
  ☆74Updated 3 years ago
• xct / winssh
  ☆49Updated last year
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆231Updated 3 years ago
• mandiant / ccmpwn
  ☆181Updated 7 months ago
• zer1t0 / certi
  ADCS abuser
  ☆254Updated last year
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆250Updated last year
• powerseb / PowerExtract
  ☆112Updated last year
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆228Updated last week
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆196Updated 10 months ago