ramoncjs3 / DumpLsassLinks
使用MiniDumpWriteDump与RtlReportSilentProcessExit实现提取lsass.dmp的工具
☆11Updated 3 years ago
Alternatives and similar repositories for DumpLsass
Users that are interested in DumpLsass are comparing it to the libraries listed below
Sorting:
- Search msDS-AllowedToActOnBehalfOfOtherIdentity☆35Updated 3 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆109Updated 4 years ago
- OXID_Find by Csharp(多线程) 通过OXID解析器获取Windows远程主机上网卡地址 From @RcoIl☆55Updated 5 years ago
- 用来存放平时写的一些net内存马,仅用于练手,需要可以自行修改☆89Updated 3 years ago
- Golang implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆26Updated 3 years ago
- ☆35Updated 3 years ago
- Shiro key check,golang Version☆57Updated 3 years ago
- 使用Csharp实现自动修改注册表键并强制锁屏,使其可被抓取明文密码。☆30Updated 4 years ago
- 窃取当前用户的ssh,sudo密码☆69Updated 2 years ago
- 对Exchange Proxyshell 做了二次修改,精确的拆分、实现辅助性安全测试。☆17Updated 4 years ago
- golang for socks5☆33Updated 4 years ago
- 利用 NTLMSSP 探测 Windows 信息☆172Updated 3 years ago
- 批量检查远程桌面密码或ntlm是否正确☆41Updated 4 years ago
- 密码收集☆58Updated 3 years ago
- A useful file search tool☆61Updated 3 years ago
- CobaltStrike profile by 风起☆37Updated 4 years ago
- Lsass memory dump.☆55Updated last year
- 根据攻防以及域信息收集经验dump快而有用的域信息☆102Updated 2 years ago
- CVE-2020-1472 C++☆83Updated 3 years ago
- 通过websocket在IIS8(Windows Server 2012)以上实现socks5代理☆93Updated last year
- PrintNightMare LPE提权漏洞的CS 反射加载插件。开箱即用、通过内存加载、混淆加载的驱动名称来ByPass Defender/EDR。☆148Updated 4 years ago
- 魔改shadowsocks,实现socks5内网穿透。☆62Updated 2 years ago
- exchange-ssrf-rce☆78Updated 4 years ago
- 通过OXID解析器获取Windows远程主机上网卡地址☆24Updated 3 years ago
- 一个基于DNS隧道的简单C2☆59Updated 3 years ago
- ☆42Updated last year
- 内存马持久化☆59Updated 3 years ago
- 替代PrintBug用于本地提权的新方式,主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …☆149Updated 3 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆88Updated 3 years ago
- 创建服务持久化☆108Updated 4 years ago