Alternatives and similar repositories for RpcSsImpersonator

Users that are interested in RpcSsImpersonator are comparing it to the libraries listed below

• sailay1996 / delete2SYSTEM

  View on GitHub
  Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM
  ☆123Aug 25, 2020Updated 5 years ago
• mez-0 / DecryptRDCManager

  View on GitHub
  .NET 4.0 Remote Desktop Manager Password Gatherer
  ☆81Sep 29, 2020Updated 5 years ago
• Soledge / BlockEtw

  View on GitHub
  .Net Assembly to block ETW telemetry in current process
  ☆81May 14, 2020Updated 5 years ago
• mez-0 / CSharpWinRM

  View on GitHub
  .NET 4.0 WinRM API Command Execution
  ☆166Sep 11, 2020Updated 5 years ago
• CCob / goreflect

  View on GitHub
  Reflective DLL loading of your favorite Golang program
  ☆173Jan 27, 2020Updated 6 years ago
• passthehashbrowns / SharpRDPThief

  View on GitHub
  A C# implementation of RDPThief to steal credentials from RDP.
  ☆166Aug 28, 2020Updated 5 years ago
• EncodeGroup / AggressiveProxy

  View on GitHub
  Project to enumerate proxy configurations and generate shellcode from CobaltStrike
  ☆140Nov 4, 2020Updated 5 years ago
• rasta-mouse / Fork-n-Run

  View on GitHub
  ☆73Oct 24, 2021Updated 4 years ago
• mez-0 / MoveScheduler

  View on GitHub
  .NET 4.0 Scheduled Job Lateral Movement
  ☆90Aug 25, 2020Updated 5 years ago
• b0bac / GetMail

  View on GitHub
  利用NTLM Hash读取Exchange邮件
  ☆441Jan 7, 2025Updated last year
• G0ldenGunSec / SharpSecDump

  View on GitHub
  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
  ☆610Feb 16, 2023Updated 2 years ago
• mitchmoser / AtYourService

  View on GitHub
  Service Enumeration C# .NET Assembly
  ☆59Sep 14, 2021Updated 4 years ago
• Rvn0xsy / Cobaltstrike-atexec

  View on GitHub
  使得Cobaltstrike支持Atexec
  ☆89Jun 30, 2020Updated 5 years ago
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,164Mar 31, 2021Updated 4 years ago
• pkb1s / SharpAllowedToAct

  View on GitHub
  Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)
  ☆197Feb 1, 2021Updated 5 years ago
• anthemtotheego / CredBandit

  View on GitHub
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆219Jul 14, 2021Updated 4 years ago
• med0x2e / ExecuteAssembly

  View on GitHub
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆595Jul 26, 2021Updated 4 years ago
• itm4n / UsoDllLoader

  View on GitHub
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆402Jun 6, 2020Updated 5 years ago
• JamesCooteUK / SharpSphere

  View on GitHub
  .NET Project for Attacking vCenter
  ☆553Nov 11, 2021Updated 4 years ago
• 3gstudent / SharpRDPCheck

  View on GitHub
  Use to check the valid account of the Remote Desktop Protocol(Support plaintext and ntlmhash)
  ☆165May 14, 2020Updated 5 years ago
• mobdk / Zeta

  View on GitHub
  Using "svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc" as trigger
  ☆58Oct 7, 2020Updated 5 years ago
• zcgonvh / TaskSchedulerMisc

  View on GitHub
  Misc TaskScheduler Plays
  ☆238Sep 27, 2022Updated 3 years ago
• monoxgas / Koppeling

  View on GitHub
  Adaptive DLL hijacking / dynamic export forwarding
  ☆808Jul 6, 2020Updated 5 years ago
• zcgonvh / EfsPotato

  View on GitHub
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆817Dec 14, 2023Updated 2 years ago
• 360-Linton-Lab / Telemetry

  View on GitHub
  WINDOWS TELEMETRY权限维持
  ☆258Jul 2, 2020Updated 5 years ago
• sailay1996 / magnifier0day

  View on GitHub
  Windows 10 Privilege Escalation (magnifier.exe) via Dll Search Order Hijacking
  ☆142May 23, 2020Updated 5 years ago
• Cracked5pider / KaynStrike

  View on GitHub
  UDRL for CS
  ☆445Dec 3, 2023Updated 2 years ago
• slyd0g / SharpClipboard

  View on GitHub
  C# Clipboard Monitor
  ☆186Apr 2, 2020Updated 5 years ago
• Kudaes / Elevator

  View on GitHub
  UAC bypass by abusing RPC and debug objects.
  ☆627Oct 19, 2023Updated 2 years ago
• CCob / BOF.NET

  View on GitHub
  A .NET Runtime for Cobalt Strike's Beacon Object Files
  ☆768Sep 4, 2024Updated last year
• passthehashbrowns / SharpBuster

  View on GitHub
  SharpBuster is a C# implementation of a directory brute forcing tool. It's designed to be used via Cobalt Strike's execute-assembly and s…
  ☆63Sep 2, 2020Updated 5 years ago
• 0xthirteen / SharpMove

  View on GitHub
  .NET Project for performing Authenticated Remote Execution
  ☆406Feb 8, 2023Updated 3 years ago
• klezVirus / CandyPotato

  View on GitHub
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆313Sep 16, 2021Updated 4 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH

  View on GitHub
  Pass the Hash to a named pipe for token Impersonation
  ☆313Nov 29, 2023Updated 2 years ago
• ustayready / SharpHose

  View on GitHub
  Asynchronous Password Spraying Tool in C# for Windows Environments
  ☆316Dec 19, 2023Updated 2 years ago
• ionescu007 / faxhell

  View on GitHub
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆330May 3, 2020Updated 5 years ago
• Aetsu / SLib

  View on GitHub
  SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#
  ☆66Aug 29, 2023Updated 2 years ago
• boku7 / spawn

  View on GitHub
  Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…
  ☆469Mar 8, 2023Updated 2 years ago
• CCob / MirrorDump

  View on GitHub
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆269Mar 18, 2021Updated 4 years ago