nickvourd / Windows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation Cookbook
☆981Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for Windows-Local-Privilege-Escalation-Cookbook
- A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec☆884Updated 2 months ago
- Awesome EDR Bypass Resources For Ethical Hacking☆940Updated last week
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆635Updated 10 months ago
- Little user-mode AV/EDR evasion lab for training & learning purposes☆1,005Updated 6 months ago
- This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.☆509Updated last month
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆639Updated 6 months ago
- A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …☆1,481Updated 2 weeks ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,150Updated last year
- A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compil…☆865Updated 4 months ago
- Powershell tool to automate Active Directory enumeration.☆1,009Updated 3 months ago
- Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)☆581Updated 3 months ago
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆638Updated 3 months ago
- This map lists the essential techniques to bypass anti-virus and EDR☆2,337Updated 11 months ago
- PEN-300 collection to help you on your exam.☆335Updated 8 months ago
- Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool☆727Updated 6 months ago
- List of Awesome Red Team / Red Teaming Resources This list is for anyone wishing to learn about Red Teaming but do not have a starting p…☆475Updated 10 months ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆1,005Updated 5 months ago
- Red Team Cheatsheet in constant expansion.☆1,131Updated 10 months ago
- Red team Interview Questions☆601Updated 3 months ago
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆1,802Updated last month
- C# Data Collector for BloodHound☆761Updated last month
- ☆671Updated 7 months ago
- A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.☆1,161Updated 10 months ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆1,824Updated last week
- Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.☆1,252Updated this week
- Dumping DPAPI credz remotely☆1,007Updated last week
- Killer tool is designed to bypass AV/EDR security tools using various evasive techniques.☆757Updated 4 months ago
- This repo contains some Amsi Bypass methods i found on different Blog Posts.☆1,708Updated 4 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆655Updated 9 months ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆815Updated this week