notdodo / LocalAdminSharp
.NET executable to use when dealing with privilege escalation on Windows to gain local administrator access
☆155Updated 2 years ago
Alternatives and similar repositories for LocalAdminSharp:
Users that are interested in LocalAdminSharp are comparing it to the libraries listed below
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆122Updated 3 years ago
- C# Lsass parser☆284Updated 3 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆226Updated 2 years ago
- ☆164Updated 2 years ago
- Simple rapper for Mimikatz, bypass Defender☆140Updated 3 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆157Updated 3 years ago
- Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.☆150Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆256Updated 2 years ago
- Patch AMSI and ETW☆236Updated 9 months ago
- Remotely enables Restricted Admin Mode☆206Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆102Updated 2 years ago
- A BOF to automate common persistence tasks for red teamers☆273Updated last year
- Koppeling x Metatwin x LazySign☆206Updated 3 years ago
- Patching AmsiOpenSession by forcing an error branching☆143Updated last year
- ☆219Updated last year
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆139Updated 9 months ago
- Beacon Object File & C# project to check LDAP signing☆182Updated 6 months ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆168Updated 2 years ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆238Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆299Updated last year
- pyCobaltHound is an Aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Blood…☆136Updated last year
- Beacon Object File PoC implementation of KillDefender☆218Updated 2 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆295Updated 2 years ago
- Simple C# implementation of PowerUpSQL☆94Updated 7 months ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆79Updated last year
- OPSEC safe Kerberoasting in C#☆189Updated 2 years ago
- Extendable payload obfuscation and delivery framework☆141Updated 2 years ago
- New UAC bypass for Silent Cleanup for CobaltStrike☆191Updated 3 years ago
- An example of using Syscalls in C# to get a meterpreter shell.☆108Updated 3 years ago
- Another meterpreter injection technique using C# that attempts to bypass Defender☆254Updated 3 years ago