Alternatives and similar repositories for CVE-2023-20198:

Users that are interested in CVE-2023-20198 are comparing it to the libraries listed below

• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆111Updated 2 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆44Updated 2 years ago
• nettitude / CVE-2024-25153
  Proof-of-concept exploit for CVE-2024-25153.
  ☆42Updated last year
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 2 years ago
• sliverarmory / hashdump
  Dump Windows SAM hashes
  ☆42Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆123Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆49Updated 2 years ago
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆90Updated last year
• horizon3ai / CVE-2023-27532
  POC for Veeam Backup and Replication CVE-2023-27532
  ☆63Updated 2 years ago
• watchtowrlabs / fortios-auth-bypass-check-CVE-2024-55591
  ☆65Updated 3 months ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• CompassSecurity / mssqlrelay
  Tool for MSSQL relay audit and abuse
  ☆46Updated 4 months ago
• weaselsec / GodPotato-Aggressor-Script
  ☆86Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆86Updated last year
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆81Updated 3 years ago
• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆64Updated last year
• mohemiv / dodgypass
  Golden collection of weak passwords
  ☆62Updated 4 months ago
• surya-dev-singh / AmsiBypass-OpenSession
  This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file
  ☆36Updated 2 years ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆115Updated last year
• e1abrador / Crackmapexec-custom-modules
  Crackmapexec custom scripts used in my internal pentests.
  ☆25Updated last year
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆45Updated 3 months ago
• sinsinology / CVE-2024-29849
  Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
  ☆87Updated 10 months ago
• bitsadmin / dir2json
  Tool for efficient directory enumeration
  ☆56Updated 6 months ago
• kymb0 / Stealth_shellcode_runners
  ☆56Updated last year
• ASP4RUX / bypassEDR-AV
  ☆56Updated 5 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆80Updated 7 months ago
• RedSiege / DigDug
  ☆79Updated 8 months ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆77Updated 9 months ago
• n00py / DCSync
  DCSync Attack from Outside using Impacket
  ☆112Updated 3 years ago