Alternatives and similar repositories for CVE-2023-36802-MSKSSRV-LPE:

Users that are interested in CVE-2023-36802-MSKSSRV-LPE are comparing it to the libraries listed below

• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆36Updated 2 weeks ago
• Wh04m1001 / UserManagerEoP
  ☆79Updated 11 months ago
• OtterHacker / Cerbere
  ☆47Updated 2 years ago
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆15Updated 2 years ago
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆28Updated 7 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆44Updated last year
• Wh04m1001 / GamingServiceEoP5
  ☆28Updated 10 months ago
• rasta-mouse / KerbApp
  ☆28Updated 9 months ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 2 years ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆38Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆80Updated 4 months ago
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆43Updated 3 months ago
• OffenseTeacher / Steganim
  ☆48Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆62Updated 2 months ago
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆46Updated 2 months ago
• Yeeb1 / SharpRDPlusSnatcher
  Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…
  ☆16Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 7 months ago
• inb1ts / birdnet-poc
  Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.
  ☆39Updated last year
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆80Updated 5 months ago
• rasta-mouse / SpawnWith
  ☆103Updated last month
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆55Updated 9 months ago
• MrAle98 / Sliver-CPPImplant2
  Sliver agent rewritten in C++
  ☆44Updated 6 months ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆93Updated last year
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated 7 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆54Updated 7 months ago
• HulkOperator / AuthStager
  ☆53Updated 5 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆86Updated last year
• MaorSabag / interactive-execute-shellcode
  A simple PoC of injection shellcode into a remote process and get the output using namepipe
  ☆42Updated last year
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆30Updated 6 months ago