Alternatives and similar repositories for CVE-2023-23397_EXPLOIT_0DAY

Users that are interested in CVE-2023-23397_EXPLOIT_0DAY are comparing it to the libraries listed below

• api0cradle / CVE-2023-23397-POC-Powershell

  View on GitHub
  ☆347Mar 17, 2023Updated 2 years ago
• decoder-it / LocalPotato

  View on GitHub
  ☆705Nov 7, 2023Updated 2 years ago
• Wh04m1001 / CVE-2023-21752

  View on GitHub
  ☆322Jan 13, 2023Updated 3 years ago
• zblurx / certsync

  View on GitHub
  Dump NTDS with golden certificates and UnPAC the hash
  ☆646Mar 20, 2024Updated last year
• leftp / DPAPISnoop

  View on GitHub
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆140Sep 14, 2024Updated last year
• wh0amitz / PetitPotato

  View on GitHub
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆453Mar 30, 2023Updated 2 years ago
• grimlockx / ADCSKiller

  View on GitHub
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆738May 19, 2023Updated 2 years ago
• LaresLLC / ScrapingKit

  View on GitHub
  Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if y…
  ☆99Jul 7, 2023Updated 2 years ago
• MzHmO / psexec_noinstall

  View on GitHub
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆172Nov 5, 2024Updated last year
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• deepinstinct / ContainYourself

  View on GitHub
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆319Aug 31, 2023Updated 2 years ago
• tothi / serviceDetector

  View on GitHub
  Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…
  ☆239Sep 3, 2023Updated 2 years ago
• mandiant / msi-search

  View on GitHub
  ☆290Jul 20, 2023Updated 2 years ago
• SaadAhla / TakeMyRDP

  View on GitHub
  A keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing i…
  ☆398Aug 2, 2023Updated 2 years ago
• chompie1337 / Windows_LPE_AFD_CVE-2023-21768

  View on GitHub
  LPE exploit for CVE-2023-21768
  ☆506Jul 10, 2023Updated 2 years ago
• xforcered / Windows_LPE_AFD_CVE-2023-21768

  View on GitHub
  LPE exploit for CVE-2023-21768
  ☆421Mar 8, 2023Updated 2 years ago
• decoder-it / ADCSCoercePotato

  View on GitHub
  ☆241May 5, 2024Updated last year
• Trackflaw / CVE-2023-23397

  View on GitHub
  Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.
  ☆127Mar 24, 2023Updated 2 years ago
• post-cyberlabs / Offensive_tools

  View on GitHub
  ☆413Dec 14, 2023Updated 2 years ago
• Wh04m1001 / CVE-2023-36874

  View on GitHub
  ☆238Aug 23, 2023Updated 2 years ago
• wh0amitz / BypassCredGuard

  View on GitHub
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆335Feb 3, 2023Updated 3 years ago
• BishopFox / CVE-2023-3519

  View on GitHub
  RCE exploit for CVE-2023-3519
  ☆229Aug 23, 2023Updated 2 years ago
• slemire / WSPCoerce

  View on GitHub
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆300Sep 7, 2023Updated 2 years ago
• FDlucifer / Proxy-Attackchain

  View on GitHub
  Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)
  ☆560Dec 7, 2023Updated 2 years ago
• Dec0ne / ShadowSpray

  View on GitHub
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆482Oct 14, 2022Updated 3 years ago
• layer8secure / SilentHound

  View on GitHub
  Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.
  ☆501Jan 23, 2023Updated 3 years ago
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF

  View on GitHub
  ☆161Mar 27, 2023Updated 2 years ago
• d3lb3 / KeePass-the-Hash

  View on GitHub
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆32Nov 12, 2022Updated 3 years ago
• Bdenneu / CVE-2022-33679

  View on GitHub
  One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
  ☆415Nov 10, 2024Updated last year
• lem0nSec / ShellGhost

  View on GitHub
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,199Oct 16, 2023Updated 2 years ago
• Dec0ne / DavRelayUp

  View on GitHub
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆565Jun 5, 2023Updated 2 years ago
• NH-RED-TEAM / RustHound

  View on GitHub
  Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀
  ☆1,125Oct 21, 2024Updated last year
• wh0amitz / KRBUACBypass

  View on GitHub
  UAC Bypass By Abusing Kerberos Tickets
  ☆508Aug 10, 2023Updated 2 years ago
• waldo-irc / CVE-2021-21551

  View on GitHub
  Exploit to SYSTEM for CVE-2021-21551
  ☆235May 20, 2021Updated 4 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆953Feb 2, 2026Updated last week
• crisprss / RasmanPotato

  View on GitHub
  Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
  ☆400Feb 6, 2023Updated 3 years ago
• MzHmO / TGSThief

  View on GitHub
  My implementation of the GIUDA project in C++
  ☆189Jul 25, 2023Updated 2 years ago
• OtterHacker / Cerbere

  View on GitHub
  ☆49Feb 11, 2023Updated 3 years ago
• garrettfoster13 / sccmhunter

  View on GitHub
  SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
  ☆882Feb 5, 2026Updated last week