p0dalirius / pyDescribeNTSecurityDescriptor
A python tool to parse and describe the contents of a raw ntSecurityDescriptor structure.
☆16Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for pyDescribeNTSecurityDescriptor
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆33Updated last month
- BOF for C2 framework☆40Updated this week
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆77Updated 6 months ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆13Updated 2 years ago
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 years ago
- ☆42Updated 2 weeks ago
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆47Updated 8 months ago
- Enable or Disable TokenPrivilege(s)☆13Updated 5 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 4 months ago
- ☆58Updated 10 months ago
- Lifetime AMSI bypass.☆36Updated 4 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆15Updated 8 months ago
- ☆27Updated 2 months ago
- Source code and examples for PassiveAggression☆54Updated 5 months ago
- Go setter/getter for property ms-Mcs-AdmPwd used by LAPS.☆12Updated 7 months ago
- ☆47Updated last year
- Windows Thread Pool Injection Havoc Implementation☆28Updated 7 months ago
- Section-based payload obfuscation technique for x64☆58Updated 3 months ago
- Brief writeup of post exploitation methodologies.☆17Updated last year
- Work, timer, and wait callback example using solely Native Windows APIs.☆83Updated 9 months ago
- time-based user enum via Basic Auth in Azure☆28Updated last month
- ☆103Updated 6 months ago
- Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…☆14Updated 8 months ago
- Construct the payload at runtime using an array of offsets☆58Updated 4 months ago
- A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust☆81Updated 7 months ago
- Sniffing files generator☆27Updated this week
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆62Updated last year
- .NET assembly loader with patchless AMSI and ETW bypass in Rust☆29Updated last month