hackvens / CoercedPotato
☆227Updated 9 months ago
Related projects: ⓘ
- Fileless atexec, no more need for port 445☆320Updated 5 months ago
- Escalate Service Account To LocalSystem via Kerberos☆387Updated last year
- Heavily obfuscated ASP web shell generation tool.☆158Updated 4 months ago
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆365Updated last year
- A list of python tools to help create an OPSEC-safe Cobalt Strike profile.☆355Updated 6 months ago
- A Windows potato to privesc☆336Updated 3 weeks ago
- ☆163Updated 10 months ago
- ☆161Updated this week
- A Tool that aims to evade av with binary padding☆113Updated 2 months ago
- Terminate AV/EDR Processes using kernel driver☆306Updated last year
- micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.☆147Updated last month
- ☆205Updated this week
- An aggressor script that can help automate payload building in Cobalt Strike☆107Updated 7 months ago
- ☆213Updated 6 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆224Updated 3 months ago
- ☆144Updated this week
- RCE exploit for CVE-2023-3519☆218Updated last year
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆217Updated 4 months ago
- Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver☆228Updated 2 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆269Updated last month
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆214Updated last month
- Credential Guard Bypass Via Patching Wdigest Memory☆304Updated last year
- ☆116Updated 2 months ago
- C2 redirector base on caddy☆190Updated 3 months ago
- ☆310Updated 10 months ago
- 🐍 Double Venom (DVenom) is a tool that provides an encryption wrapper and loader for your shellcode.☆155Updated last year
- VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)