DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.
☆468Aug 17, 2024Updated last year
Alternatives and similar repositories for DeadPotato
Users that are interested in DeadPotato are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆645May 8, 2025Updated last year
- Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!☆556May 9, 2025Updated last year
- Fileless atexec, no more need for port 445☆409Mar 28, 2024Updated 2 years ago
- SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection s…☆494May 16, 2024Updated 2 years ago
- ☆236Oct 8, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆356Nov 19, 2024Updated last year
- A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTA…☆362Mar 17, 2026Updated 2 months ago
- Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)☆735May 7, 2025Updated last year
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆535Nov 14, 2025Updated 6 months ago
- ☆248May 5, 2024Updated 2 years ago
- Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advance…☆576May 22, 2025Updated last year
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆693Aug 15, 2025Updated 9 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆627Feb 21, 2024Updated 2 years ago
- Process injection alternative☆408Sep 6, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆393Apr 26, 2026Updated 3 weeks ago
- Sleep obfuscation☆276Dec 13, 2024Updated last year
- ☆388Oct 17, 2025Updated 7 months ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆251Jun 11, 2024Updated last year
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆306Jul 31, 2024Updated last year
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆596Mar 19, 2024Updated 2 years ago
- ☆101Sep 1, 2024Updated last year
- A Windows potato to privesc☆393Aug 26, 2024Updated last year
- ☆2,276Nov 24, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Leverage WindowsApp createdump tool to obtain an lsass dump☆153Sep 20, 2024Updated last year
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆261Aug 13, 2024Updated last year
- LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…☆389Apr 26, 2025Updated last year
- ☆201Mar 28, 2025Updated last year
- New generation of wmiexec.py☆1,289Apr 26, 2026Updated 3 weeks ago
- ☆709Nov 7, 2023Updated 2 years ago
- Reflective DLL Injection Made Bella☆250Jan 6, 2025Updated last year
- A BOF that runs unmanaged PEs inline☆702Oct 23, 2024Updated last year
- BOF for Kerberos abuse (an implementation of some important features of the Rubeus).☆585Nov 23, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Generic PE loader for fast prototyping evasion techniques☆247Jul 2, 2024Updated last year
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆470Aug 2, 2024Updated last year
- A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.☆444Jul 8, 2024Updated last year
- Bypassing UAC with SSPI Datagram Contexts☆468Sep 24, 2023Updated 2 years ago
- Extract and execute a PE embedded within a PNG file using an LNK file.☆475Nov 2, 2024Updated last year
- Bypass LSA protection using the BYODLL technique☆180Sep 21, 2024Updated last year
- Windows remote execution multitool☆796Mar 25, 2026Updated last month