sec-consult / msiscan
Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
☆48Updated last week
Related projects: ⓘ
- ☆42Updated 2 months ago
- ☆62Updated last month
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆29Updated 3 months ago
- ☆27Updated 3 months ago
- ☆27Updated 4 months ago
- Some of the presentations, workshops, and labs I gave at public conferences.☆21Updated last week
- ☆38Updated 2 years ago
- ☆50Updated this week
- Unchain AMSI by patching the provider’s unmonitored memory space☆87Updated last year
- An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities☆43Updated 2 years ago
- ☆34Updated 11 months ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆72Updated last month
- Python3 rewrite of AsOutsider features of AADInternals☆25Updated last week
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆77Updated 7 months ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆56Updated 11 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 4 months ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆37Updated last year
- ☆83Updated 2 years ago
- ZSH integration for Impacket☆56Updated last week
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆18Updated 9 months ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆55Updated 5 months ago
- An old Windows workstations LPE for domain environments without LDAP signing/channel binding.☆26Updated last year
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆92Updated 5 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆25Updated 6 months ago
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆109Updated last year
- ☆68Updated last year
- SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…☆60Updated 4 months ago
- Windows internals and exploitation tricks☆90Updated 3 months ago
- A VSCode devcontainer for development of COFF files with batteries included.☆47Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆50Updated 4 years ago