Alternatives and similar repositories for zero2hero

Users that are interested in zero2hero are comparing it to the libraries listed below

• sailay1996 / WerTrigger
  Weaponizing for privileged file writes bugs with windows problem reporting
  ☆222Updated 3 years ago
• xpn / Powershell-PostExploitation
  Scripts created to help with post exploitation of a Windows host
  ☆97Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆149Updated 4 years ago
• TarlogicSecurity / EoPLoadDriver
  Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)
  ☆139Updated 6 years ago
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆201Updated 5 years ago
• micahvandeusen / GenericPotato
  Impersonating authentication over HTTP and/or named pipes.
  ☆133Updated 4 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆74Updated 5 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆167Updated 2 years ago
• riskydissonance / SafetyDump
  Dump stuff without touching disk
  ☆162Updated 4 years ago
• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆63Updated 6 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆117Updated 9 years ago
• outflanknl / NetshHelperBeacon
  Example DLL to load from Windows NetShell
  ☆179Updated 8 years ago
• TsukiCTF / Lovely-Potato
  Automating juicy potato local privilege escalation exploit for penetration testers
  ☆143Updated 3 years ago
• anthemtotheego / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆217Updated 3 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆129Updated 2 years ago
• karttoon / trigen
  Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.
  ☆204Updated 7 years ago
• 0xVIC / myAPPLockerBypassSummary
  Simple APPLocker bypass summary
  ☆41Updated 6 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆307Updated 3 years ago
• outflanknl / FindObjects-BOF
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆269Updated 2 years ago
• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆126Updated 5 years ago
• bytecod3r / Cobaltstrike-Aggressor-Scripts-Collection
  Collection of tested Cobaltstrike aggressor scripts.
  ☆116Updated 5 years ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆264Updated 3 years ago
• netbiosX / AMSI-Provider
  A fake AMSI Provider which can be used for persistence.
  ☆150Updated 4 years ago
• Mr-Un1k0d3r / Shellcoding
  Shellcoding utilities
  ☆222Updated 4 years ago
• med0x2e / NoAmci
  Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
  ☆216Updated 5 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆390Updated 3 years ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆90Updated 4 years ago
• mdsecactivebreach / firewalker
  ☆151Updated 4 years ago
• xforcered / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆242Updated 3 years ago
• rvazarkar / GMSAPasswordReader
  ☆219Updated 2 years ago