ly4k / PrintNightmareLinks
Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)
☆198Updated 3 years ago
Alternatives and similar repositories for PrintNightmare
Users that are interested in PrintNightmare are comparing it to the libraries listed below
Sorting:
- Python implementation for PetitPotam☆208Updated 3 years ago
- MS-FSRVP coercion abuse PoC☆296Updated 3 years ago
- Proof-of-concept tools for my AD Forest trust research☆223Updated last year
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆280Updated 3 years ago
- C# Lsass parser☆296Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆304Updated last year
- Pure C++, weaponized, fully automated implementation of RottenPotatoNG☆309Updated 3 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆300Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- Shellcode launcher for AV bypass☆216Updated last year
- A User Impersonation tool - via Token or Shellcode injection☆418Updated 3 years ago
- Run Powershell without software restrictions.☆284Updated 3 years ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated last year
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆229Updated 2 weeks ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆258Updated last year
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆428Updated 7 months ago
- WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement☆368Updated 3 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆280Updated 4 years ago
- Weaponizing for privileged file writes bugs with windows problem reporting☆231Updated 3 years ago
- Recovering NTLM hashes from Credential Guard☆345Updated 2 years ago
- Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon☆331Updated 3 years ago
- ☆465Updated 2 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆233Updated 3 years ago
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆185Updated 3 years ago
- A BOF to automate common persistence tasks for red teamers☆285Updated 2 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆233Updated 3 years ago
- Powershell version of SharpGPOAbuse☆85Updated 4 years ago
- ☆347Updated 2 years ago
- Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.☆307Updated 3 years ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆328Updated 2 years ago