Alternatives and similar repositories for SeDebugAbuse

Users that are interested in SeDebugAbuse are comparing it to the libraries listed below

• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆50Updated 2 years ago
• Nariod / laz-y
  Automating payload generation for OSEP labs and exam.
  ☆34Updated 2 years ago
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆15Updated 2 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆56Updated 3 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆49Updated last month
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆36Updated 3 months ago
• bruno-1337 / SeDebugPrivilege-Exploit
  Simple C++ PoC of SeDebugPrivilege Privesc
  ☆23Updated last year
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆103Updated last year
• NVISOsecurity / cs2br-bof
  Run Cobalt Strike BOFs in Brute Ratel C4!
  ☆68Updated last month
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 2 years ago
• Wh04m1001 / MSIExecEoP
  Arbitrary File Delete in Windows Installer before 10.0.19045.2193
  ☆30Updated 2 years ago
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆95Updated 2 years ago
• casp3r0x0 / LoaderGate
  a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.
  ☆30Updated last week
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• Wh04m1001 / CVE-2022-3368
  ☆29Updated 2 years ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆57Updated 9 months ago
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆48Updated 4 months ago
• waawaa / AMSI_Rubeus_bypass
  ☆70Updated 2 years ago
• BronzeBee / DavRelayUp
  An old Windows workstations LPE for domain environments without LDAP signing/channel binding.
  ☆34Updated 2 years ago
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆82Updated 7 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆45Updated last year
• latortuga71 / SharpChisel-NG
  ☆36Updated last year
• OtterHacker / AWSRedirector
  ☆55Updated 3 months ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆95Updated last year
• ASP4RUX / bypassEDR-AV
  ☆56Updated 6 months ago
• SolomonSklash / RubeusToCcache
  A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
  ☆58Updated 5 years ago
• ropbear / CLMBypass
  Bypass Constrained Language Mode in PowerShell
  ☆29Updated 6 years ago