wh0amitz / PetitPotato
Local privilege escalation via PetitPotam (Abusing impersonate privileges).
☆405Updated last year
Related projects: ⓘ
- MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.☆485Updated last month
- UAC Bypass By Abusing Kerberos Tickets☆470Updated last year
- Escalate Service Account To LocalSystem via Kerberos☆387Updated last year
- A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.☆436Updated 5 months ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆510Updated last year
- Cobalt Strike HTTPS beaconing over Microsoft Graph API☆539Updated 2 months ago
- MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.☆250Updated 11 months ago
- ☆401Updated last year
- Another Windows Local Privilege Escalation from Service Account to System☆794Updated last year
- ☆196Updated this week
- Collection of Beacon Object Files (BOF) for Cobalt Strike☆510Updated 2 months ago
- Collection of UAC Bypass Techniques Weaponized as BOFs☆380Updated 6 months ago
- Awesome AV/EDR/XDR Bypass Tips☆244Updated last year
- A CobaltStrike toolkit to write files produced by Beacon to memory instead of disk☆417Updated 2 months ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆510Updated 7 months ago
- Useful C2 techniques and cheatsheets learned from engagements☆415Updated last month
- ☆497Updated 2 years ago
- A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.☆360Updated 2 months ago
- shellcode loader for your evasion needs☆257Updated 3 months ago
- DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…☆294Updated last month
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆620Updated 2 months ago
- Go shellcode loader that combines multiple evasion techniques☆337Updated last year
- Shellcode launcher for AV bypass☆215Updated 8 months ago
- XLL Phishing Tradecraft☆387Updated 2 years ago
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆459Updated 10 months ago
- Just another Powerview alternative☆439Updated 2 weeks ago
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆447Updated 6 months ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller☆391Updated last year
- Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles☆357Updated last year