Alternatives and similar repositories for zero2hero:

Users that are interested in zero2hero are comparing it to the libraries listed below

• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆148Updated 4 years ago
• xpn / Powershell-PostExploitation
  Scripts created to help with post exploitation of a Windows host
  ☆96Updated 4 years ago
• sailay1996 / WerTrigger
  Weaponizing for privileged file writes bugs with windows problem reporting
  ☆214Updated 2 years ago
• TarlogicSecurity / EoPLoadDriver
  Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)
  ☆128Updated 6 years ago
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆200Updated 4 years ago
• micahvandeusen / GenericPotato
  Impersonating authentication over HTTP and/or named pipes.
  ☆126Updated 3 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆165Updated 2 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆115Updated 9 years ago
• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆61Updated 6 years ago
• TsukiCTF / Lovely-Potato
  Automating juicy potato local privilege escalation exploit for penetration testers
  ☆140Updated 3 years ago
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆40Updated 6 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆128Updated last year
• riskydissonance / SafetyDump
  Dump stuff without touching disk
  ☆162Updated 4 years ago
• mdsecactivebreach / Farmer
  ☆358Updated 3 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆300Updated 3 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆381Updated 3 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆245Updated 4 years ago
• Gl3bGl4z / All_NTLM_leak
  ☆67Updated 4 years ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆257Updated 3 years ago
• jfmaes / Invoke-DLLClone
  Koppeling x Metatwin x LazySign
  ☆205Updated 3 years ago
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆118Updated 5 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆214Updated 4 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆320Updated 5 years ago
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆191Updated 3 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆259Updated 2 years ago
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆351Updated 3 years ago
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆89Updated 10 months ago
• xforcered / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆235Updated 3 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆69Updated 4 years ago
• cfalta / PoshADCS
  A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
  ☆178Updated 3 years ago