Alternatives and similar repositories for PrintNightmare

Users that are interested in PrintNightmare are comparing it to the libraries listed below

• Cerbersec / DomainBorrowingC2
  ☆167Updated 4 years ago
• S3cur3Th1sSh1t / NamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆143Updated 4 years ago
• magnusstubman / MagnusKatz
  Research project for understanding how Mimikatz work and become better at C
  ☆122Updated 3 years ago
• mobdk / CopyCat
  Simple rapper for Mimikatz, bypass Defender
  ☆140Updated 3 years ago
• sailay1996 / SpoolTrigger
  Weaponizing for privileged file writes bugs with PrintNotify Service
  ☆134Updated 3 years ago
• notdodo / adduser-dll
  Simple DLL that add a user to the local Administrators group
  ☆77Updated 3 years ago
• xpn / ntlmquic
  POC tools for exploring SMB over QUIC protocol
  ☆125Updated 3 years ago
• plackyhacker / Peruns-Fart
  Perun's Fart (Slavic God's Luck). Another method for unhooking AV and EDR, this is my C# version.
  ☆108Updated 3 years ago
• xRET2pwn / PickleC2
  PickleC2 is a post-exploitation and lateral movements framework
  ☆96Updated 3 years ago
• sailay1996 / cve-2022-21882-poc
  lpe poc for cve-2022-21882
  ☆49Updated 3 years ago
• snovvcrash / MirrorDump
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆104Updated 3 years ago
• EspressoCake / DLL-Hijack-Search-Order-BOF
  DLL Hijack Search Order Enumeration BOF
  ☆147Updated 3 years ago
• mrd0x / pe2shc-to-cdb
  Convert shellcode generated using pe_2_shellcode to cdb format.
  ☆97Updated 3 years ago
• m57 / cobaltstrike_bofs
  My CobaltStrike BOFS
  ☆166Updated 2 years ago
• Cobalt-Strike / beacon_health_check
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆142Updated 3 years ago
• rsmudge / ZeroLogon-BOF
  ☆158Updated 3 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆140Updated 3 years ago
• Kevin-Robertson / Sharpmad
  C# version of Powermad
  ☆166Updated last year
• icyguider / DumpNParse
  A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.
  ☆150Updated 3 years ago
• 0vercl0k / CVE-2022-21974
  PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"
  ☆60Updated 3 years ago
• SolomonSklash / SyscallPOC
  Shellcode injection POC using syscalls.
  ☆116Updated 5 years ago
• 0xB455 / AmsiBypass
  C# PoC implementation for bypassing AMSI via in memory patching
  ☆65Updated 4 years ago
• xforcered / Detect-Hooks
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆101Updated 3 years ago
• ChoiSG / UuidShellcodeExec
  PoC for UUID shellcode execution using DInvoke
  ☆151Updated 4 years ago
• jfmaes / SharpNukeEventLog
  nuke that event log using some epic dinvoke fu
  ☆118Updated 4 years ago
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆227Updated 3 years ago
• RiccardoAncarani / TaskShell
  ☆57Updated 4 years ago
• EspressoCake / Self_Deletion_BOF
  BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs
  ☆181Updated 3 years ago
• sailay1996 / windows-stuff
  my learning case about windows
  ☆21Updated 3 years ago
• RedSiege / Screenshooter
  C# program to take a full size screenshot or a recording of the user's desktop. Takes in 0-3 flags
  ☆85Updated 4 years ago