p0dalirius / pyDescribeNTSecurityDescriptor

Related projects ⓘ

Alternatives and complementary repositories for pyDescribeNTSecurityDescriptor

• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆33Updated last month
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆40Updated this week
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆77Updated 6 months ago
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆13Updated 2 years ago
• p0dalirius / MSRPRN-Coerce
  A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).
  ☆20Updated 2 years ago
• OtterHacker / ShareFouine
  ☆42Updated 2 weeks ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆47Updated 8 months ago
• voidvxvt / EnableAllTokenPrivs
  Enable or Disable TokenPrivilege(s)
  ☆13Updated 5 months ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆39Updated 4 months ago
• Bl4ckM1rror / PEAs
  ☆58Updated 10 months ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆36Updated 4 months ago
• nickvourd / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆15Updated 8 months ago
• xforcered / VectoredExceptionHandling
  ☆27Updated 2 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 5 months ago
• p0dalirius / goLAPS
  Go setter/getter for property ms-Mcs-AdmPwd used by LAPS.
  ☆12Updated 7 months ago
• OffenseTeacher / Steganim
  ☆47Updated last year
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆28Updated 7 months ago
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆58Updated 3 months ago
• Tarakhs / ToyingWithHellsGate
  Brief writeup of post exploitation methodologies.
  ☆17Updated last year
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆83Updated 9 months ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure
  ☆28Updated last month
• xpn / CloudInject
  ☆103Updated 6 months ago
• Yeeb1 / SharpRDPlusSnatcher
  Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…
  ☆14Updated 8 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆58Updated 4 months ago
• Karkas66 / CelestialSpark
  A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust
  ☆81Updated 7 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆27Updated this week
• lleon1435 / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆14Updated last year
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆62Updated last year
• c2pain / RustPatchlessCLRLoader
  .NET assembly loader with patchless AMSI and ETW bypass in Rust
  ☆29Updated last month