Alternatives and similar repositories for CVE-2021-21551

Users that are interested in CVE-2021-21551 are comparing it to the libraries listed below

• hausec / ProxyLogon
  ☆293Updated 11 months ago
• jfmaes / SharpZipRunner
  Executes position independent shellcode from an encrypted zip
  ☆304Updated 4 years ago
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆379Updated 2 years ago
• Mr-Un1k0d3r / ADHuntTool
  official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)
  ☆233Updated 3 years ago
• newsoft / adduser
  Programmatically create an administrative user under Windows
  ☆180Updated 8 years ago
• bytecod3r / Cobaltstrike-Aggressor-Scripts-Collection
  Collection of tested Cobaltstrike aggressor scripts.
  ☆118Updated 5 years ago
• rxwx / spoolsystem
  Print Spooler Named Pipe Impersonation for Cobalt Strike
  ☆264Updated 5 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆307Updated 3 years ago
• outflanknl / WdToggle
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆220Updated 2 years ago
• EncodeGroup / UAC-SilentClean
  New UAC bypass for Silent Cleanup for CobaltStrike
  ☆192Updated 3 years ago
• Flangvik / SharpProxyLogon
  C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
  ☆245Updated 4 years ago
• CCob / MirrorDump
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆265Updated 4 years ago
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆328Updated 3 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆302Updated last year
• rsmudge / ZeroLogon-BOF
  ☆158Updated 3 years ago
• BC-SECURITY / Invoke-PrintDemon
  This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.
  ☆202Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆152Updated 4 years ago
• outflanknl / FindObjects-BOF
  A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific loaded modules or pro…
  ☆272Updated 2 years ago
• rvrsh3ll / CPLResourceRunner
  Run shellcode from resource
  ☆260Updated 4 years ago
• dcsync / pycobalt
  Cobalt Strike Python API
  ☆301Updated 3 years ago
• 0xthirteen / StayKit
  Cobalt Strike kit for Persistence
  ☆476Updated 5 years ago
• optiv / Dent
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆297Updated last year
• deepinstinct / LsassSilentProcessExit
  Command line interface to dump LSASS memory to disk via SilentProcessExit
  ☆448Updated 4 years ago
• RedCursorSecurityConsulting / CVE-2020-0668
  Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
  ☆222Updated 5 years ago
• RedSiege / hot-manchego
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆147Updated 4 years ago
• sailay1996 / cve-2020-1337-poc
  poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
  ☆174Updated 4 years ago
• threatexpress / aggressor-scripts
  Cobalt Strike Aggressor Scripts
  ☆143Updated 7 months ago
• b4rtik / SharpMiniDump
  Create a minidump of the LSASS process from memory
  ☆261Updated 2 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆180Updated 3 years ago
• itm4n / Perfusion
  Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
  ☆420Updated 4 years ago