Alternatives and similar repositories for CoercedPotato

Users that are interested in CoercedPotato are comparing it to the libraries listed below

• mertdas / SharpIncrease
  A Tool that aims to evade av with binary padding
  ☆156Updated last year
• Prepouce / CoercedPotato
  A Windows potato to privesc
  ☆386Updated last year
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆397Updated last year
• fin3ss3g0d / ASPJinjaObfuscator
  Heavily obfuscated ASP web shell generation tool.
  ☆172Updated last year
• XiaoliChan / RedCaddy
  C2 redirector base on caddy
  ☆209Updated last year
• 0xEr3bus / RdpStrike
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆248Updated last year
• mertdas / RedPersist
  ☆219Updated last year
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆399Updated 2 years ago
• crisprss / RasmanPotato
  Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
  ☆398Updated 2 years ago
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆292Updated last week
• N1k0la-T / CVE-2023-36745
  ☆165Updated 2 years ago
• YOLOP0wn / POSTDump
  ☆338Updated 9 months ago
• Zerx0r / dvenom
  🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.
  ☆158Updated 2 years ago
• wh0amitz / BypassCredGuard
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆334Updated 2 years ago
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆157Updated last year
• BishopFox / CVE-2023-3519
  RCE exploit for CVE-2023-3519
  ☆230Updated 2 years ago
• mertdas / SharpTerminator
  Terminate AV/EDR Processes using kernel driver
  ☆348Updated 2 years ago
• Workingdaturah / Payload-Generator
  An aggressor script that can help automate payload building in Cobalt Strike
  ☆118Updated last year
• mverschu / CVE-2025-33073
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆588Updated 5 months ago
• decoder-it / ADCSCoercePotato
  ☆233Updated last year
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆209Updated 2 years ago
• senzee1984 / micr0_shell
  micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.
  ☆202Updated last year
• watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit
  Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE
  ☆196Updated last year
• W01fh4cker / ScreenConnect-AuthBypass-RCE
  ScreenConnect AuthBypass(cve-2024-1709) --> RCE!!!
  ☆105Updated last year
• netero1010 / RDPHijack-BOF
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆312Updated 3 years ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆328Updated 3 years ago
• WKL-Sec / Malleable-CS-Profiles
  A list of python tools to help create an OPSEC-safe Cobalt Strike profile.
  ☆489Updated 5 months ago
• sokaRepo / CoercedPotatoRDLL
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆225Updated last year
• W01fh4cker / CVE-2023-46747-RCE
  exploit for f5-big-ip RCE cve-2023-46747
  ☆206Updated last year
• maxDcb / C2TeamServer
  TeamServer and Client of Exploration Command and Control Framework
  ☆175Updated last week