hatRiot / token-priv
Token Privilege Research
☆798Updated 7 years ago
Alternatives and similar repositories for token-priv:
Users that are interested in token-priv are comparing it to the libraries listed below
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆921Updated 7 years ago
- A tool to elevate privilege with Windows Tokens☆1,028Updated last year
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,466Updated 6 years ago
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,240Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,448Updated last year
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,257Updated 4 years ago
- PowerShell Pass The Hash Utils☆1,533Updated 6 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆824Updated 6 years ago
- ☆478Updated 7 years ago
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,124Updated 3 years ago
- Exchange privilege escalations to Active Directory☆743Updated last year
- Hide your Powershell script in plain sight. Bypass all Powershell security features☆1,129Updated 5 years ago
- PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…☆954Updated 8 months ago
- Sandbox evasion modules written in PowerShell, Python, Go, Ruby, C, C#, Perl, and Rust.☆908Updated 3 years ago
- Process Injection☆754Updated 3 years ago
- A little toolbox to play with Microsoft Kerberos in C☆1,452Updated 3 years ago
- Aggressor scripts for use with Cobalt Strike 3.0+☆810Updated 2 years ago
- CACTUSTORCH: Payload Generation for Adversary Simulations☆1,000Updated 6 years ago
- getsystem via parent process using ps1 & embeded c#☆392Updated last year
- LSASS memory dumper using direct system calls and API unhooking.☆1,505Updated 4 years ago
- ☆515Updated 2 years ago
- Another Windows Local Privilege Escalation from Service Account to System☆1,063Updated 4 years ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆995Updated 5 years ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.☆512Updated 2 years ago
- Cmd.exe Command Obfuscation Generator & Detection Test Harness☆841Updated 6 years ago
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆382Updated 4 years ago
- Executes PowerShell from an unmanaged process☆476Updated 8 years ago
- RottenPotato local privilege escalation from service account to SYSTEM☆656Updated 7 years ago
- Toolbox containing research notes & PoC code for weaponizing .NET's DLR☆515Updated 3 years ago
- PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.☆630Updated 5 months ago