Alternatives and similar repositories for zerologon

Users that are interested in zerologon are comparing it to the libraries listed below

• VoidSec / CVE-2020-1472
  Exploit Code for CVE-2020-1472 aka Zerologon
  ☆386Updated 4 years ago
• dirkjanm / CVE-2020-1472
  PoC for Zerologon - all research credits go to Tom Tervoort of Secura
  ☆1,259Updated 4 years ago
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,132Updated 4 years ago
• ropnop / impacket_static_binaries
  Standalone binaries for Linux/Windows of Impacket's examples
  ☆738Updated 2 years ago
• breenmachine / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆959Updated 7 years ago
• cube0x0 / noPac
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,385Updated 3 years ago
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,774Updated last year
• bats3c / darkarmour
  Windows AV Evasion
  ☆810Updated 5 years ago
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,385Updated 2 years ago
• blackarrowsec / mssqlproxy
  mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…
  ☆751Updated 4 years ago
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,416Updated 2 years ago
• antonioCoco / SharPyShell
  SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
  ☆1,016Updated last year
• 3v4Si0N / HTTP-revshell
  Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware
  ☆604Updated last year
• safebuffer / sam-the-admin
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆1,036Updated 3 years ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆715Updated 4 years ago
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆1,040Updated 5 years ago
• dirkjanm / adidnsdump
  Active Directory Integrated DNS dumping by any authenticated user
  ☆1,090Updated 6 months ago
• blackarrowsec / redteam-research
  Collection of PoC and offensive techniques used by the BlackArrow Red Team
  ☆1,133Updated last year
• calebstewart / CVE-2021-1675
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,072Updated 4 years ago
• RedSiege / C2concealer
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆1,092Updated last year
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,432Updated 8 months ago
• maaaaz / impacket-examples-windows
  The great impacket example scripts compiled for Windows
  ☆984Updated 6 years ago
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,039Updated last year
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆649Updated 5 years ago
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆938Updated 2 years ago
• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,553Updated 2 years ago
• GossiTheDog / HiveNightmare
  Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
  ☆785Updated 4 years ago
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,092Updated 2 years ago
• TarlogicSecurity / kerbrute
  An script to perform kerberos bruteforcing by using impacket
  ☆456Updated 3 years ago
• jamf / CVE-2020-0796-RCE-POC
  CVE-2020-0796 Remote Code Execution POC
  ☆568Updated 5 years ago