Alternatives and similar repositories for zerologon

Users that are interested in zerologon are comparing it to the libraries listed below

• dirkjanm / CVE-2020-1472
  PoC for Zerologon - all research credits go to Tom Tervoort of Secura
  ☆1,273Updated 5 years ago
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,148Updated 5 years ago
• VoidSec / CVE-2020-1472
  Exploit Code for CVE-2020-1472 aka Zerologon
  ☆393Updated 5 years ago
• ropnop / impacket_static_binaries
  Standalone binaries for Linux/Windows of Impacket's examples
  ☆743Updated 2 years ago
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,802Updated last year
• cube0x0 / noPac
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,396Updated 4 years ago
• breenmachine / RottenPotatoNG
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆966Updated 8 years ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆829Updated 5 years ago
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,423Updated 3 years ago
• safebuffer / sam-the-admin
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆1,039Updated 3 years ago
• antonioCoco / SharPyShell
  SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
  ☆1,046Updated 2 years ago
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆1,052Updated 6 years ago
• blackarrowsec / redteam-research
  Collection of PoC and offensive techniques used by the BlackArrow Red Team
  ☆1,144Updated last year
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,438Updated 3 years ago
• 3v4Si0N / HTTP-revshell
  Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware
  ☆604Updated last year
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,080Updated last year
• dirkjanm / adidnsdump
  Active Directory Integrated DNS dumping by any authenticated user
  ☆1,125Updated 10 months ago
• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,589Updated 2 years ago
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆670Updated 5 years ago
• RedSiege / C2concealer
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆1,094Updated last year
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,519Updated last year
• calebstewart / CVE-2021-1675
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,086Updated 4 years ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆718Updated 4 years ago
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,097Updated 2 years ago
• blackarrowsec / mssqlproxy
  mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…
  ☆764Updated 4 years ago
• mandiant / SharPersist
  ☆1,529Updated 2 years ago
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆1,011Updated 4 years ago
• itm4n / PrintSpoofer
  Abusing impersonation privileges through the "Printer Bug"
  ☆2,167Updated 5 years ago
• maaaaz / impacket-examples-windows
  The great impacket example scripts compiled for Windows
  ☆997Updated 7 years ago
• TarlogicSecurity / kerbrute
  An script to perform kerberos bruteforcing by using impacket
  ☆455Updated 3 years ago