Alternatives and similar repositories for zerologon

Users that are interested in zerologon are comparing it to the libraries listed below

• VoidSec / CVE-2020-1472
  Exploit Code for CVE-2020-1472 aka Zerologon
  ☆384Updated 4 years ago
• ropnop / impacket_static_binaries
  Standalone binaries for Linux/Windows of Impacket's examples
  ☆739Updated 2 years ago
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,133Updated 4 years ago
• dirkjanm / CVE-2020-1472
  PoC for Zerologon - all research credits go to Tom Tervoort of Secura
  ☆1,257Updated 4 years ago
• breenmachine / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆957Updated 7 years ago
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,377Updated 2 years ago
• cube0x0 / noPac
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,385Updated 3 years ago
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,039Updated last year
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,774Updated last year
• antonioCoco / SharPyShell
  SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
  ☆1,011Updated last year
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆642Updated 5 years ago
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,418Updated 8 months ago
• safebuffer / sam-the-admin
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆1,034Updated 3 years ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆810Updated 5 years ago
• blackarrowsec / mssqlproxy
  mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…
  ☆752Updated 4 years ago
• 3v4Si0N / HTTP-revshell
  Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware
  ☆605Updated last year
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆1,036Updated 5 years ago
• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,549Updated 2 years ago
• blackarrowsec / redteam-research
  Collection of PoC and offensive techniques used by the BlackArrow Red Team
  ☆1,135Updated last year
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆934Updated 2 years ago
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆1,008Updated 3 years ago
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,415Updated 2 years ago
• dirkjanm / adidnsdump
  Active Directory Integrated DNS dumping by any authenticated user
  ☆1,071Updated 6 months ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆715Updated 4 years ago
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,090Updated 2 years ago
• TarlogicSecurity / kerbrute
  An script to perform kerberos bruteforcing by using impacket
  ☆457Updated 3 years ago
• maaaaz / impacket-examples-windows
  The great impacket example scripts compiled for Windows
  ☆983Updated 6 years ago
• calebstewart / CVE-2021-1675
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,067Updated 4 years ago
• fox-it / aclpwn.py
  Active Directory ACL exploitation with BloodHound
  ☆744Updated 3 years ago
• zcgonvh / EfsPotato
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆800Updated last year