Token Privilege Research
☆872Sep 1, 2017Updated 8 years ago
Alternatives and similar repositories for token-priv
Users that are interested in token-priv are comparing it to the libraries listed below
Sorting:
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆968Dec 29, 2017Updated 8 years ago
- RottenPotato local privilege escalation from service account to SYSTEM☆691Dec 29, 2017Updated 8 years ago
- PowerShell Pass The Hash Utils☆1,724Dec 9, 2018Updated 7 years ago
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,317Jan 18, 2021Updated 5 years ago
- A tool to elevate privilege with Windows Tokens☆1,053Oct 6, 2023Updated 2 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,607Jul 10, 2023Updated 2 years ago
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,642Oct 11, 2018Updated 7 years ago
- Payload Generation Framework☆1,972Aug 21, 2024Updated last year
- HTA encryption tool for RedTeams☆1,422Nov 9, 2022Updated 3 years ago
- PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…☆1,090May 29, 2024Updated last year
- A little toolbox to play with Microsoft Kerberos in C☆1,506Dec 14, 2021Updated 4 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,916Nov 19, 2025Updated 3 months ago
- SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader☆1,308Oct 1, 2019Updated 6 years ago
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,128Feb 10, 2021Updated 5 years ago
- Exchange privilege escalations to Active Directory☆806Apr 23, 2023Updated 2 years ago
- My musings with PowerShell☆2,704Nov 19, 2021Updated 4 years ago
- Run PowerShell with rundll32. Bypass software restrictions.☆1,822Mar 17, 2021Updated 4 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,576Jan 5, 2021Updated 5 years ago
- SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…☆1,302Dec 15, 2020Updated 5 years ago
- PowerShell MachineAccountQuota and DNS exploit tools☆1,438Jan 11, 2023Updated 3 years ago
- This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …☆842Jun 25, 2024Updated last year
- ☆525Sep 15, 2022Updated 3 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,548Aug 2, 2019Updated 6 years ago
- ☆1,489Dec 31, 2022Updated 3 years ago
- Another Windows Local Privilege Escalation from Service Account to System☆1,155Jan 9, 2021Updated 5 years ago
- Run PowerShell command without invoking powershell.exe☆1,533Mar 23, 2023Updated 2 years ago
- SharpSploit is a .NET post-exploitation library written in C#☆1,861Aug 12, 2021Updated 4 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,503Nov 15, 2023Updated 2 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆854Mar 23, 2018Updated 7 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆2,732Dec 18, 2021Updated 4 years ago
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,267Nov 6, 2025Updated 3 months ago
- Windows Event Log Killer☆1,813Sep 21, 2023Updated 2 years ago
- Powershell C2 Server and Implants☆575Nov 11, 2019Updated 6 years ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,429Jul 20, 2024Updated last year
- Defeating Windows User Account Control☆7,404Feb 17, 2026Updated 2 weeks ago
- C# implementation of harmj0y's PowerView☆1,086Mar 22, 2024Updated last year
- Also known by Microsoft as Knifecoat☆1,153Dec 22, 2022Updated 3 years ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,470Jul 8, 2025Updated 7 months ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆399May 20, 2020Updated 5 years ago