xct / SeDebugAbuse
Get SYSTEM via SeDebugPrivilege
☆20Updated 2 years ago
Alternatives and similar repositories for SeDebugAbuse:
Users that are interested in SeDebugAbuse are comparing it to the libraries listed below
- ☆48Updated 2 years ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆15Updated 2 years ago
- Automating payload generation for OSEP labs and exam.☆34Updated 2 years ago
- ☆29Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆49Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆55Updated 3 years ago
- ☆88Updated 2 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆80Updated 3 years ago
- An old Windows workstations LPE for domain environments without LDAP signing/channel binding.☆32Updated 2 years ago
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated 2 years ago
- Simple C++ PoC of SeDebugPrivilege Privesc☆23Updated last year
- ☆83Updated last year
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆29Updated 2 years ago
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV☆26Updated 2 years ago
- ☆139Updated 2 years ago
- C# havoc implant☆100Updated 2 years ago
- SeManageVolumePrivilege to SYSTEM☆94Updated last year
- Lsass dumper evading (some) EDR detection☆22Updated last month
- ☆28Updated 2 years ago
- ☆54Updated 4 months ago
- Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…☆16Updated last year
- A repository with my code snippets for research/education purposes.☆50Updated last year
- ☆96Updated last year
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 2 years ago
- JustGetDA, a cheat sheet which will aid you through internal network & red team engagements.☆13Updated last year
- Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post☆91Updated 2 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆111Updated this week
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆55Updated 4 years ago
- A simple C++ Windows tool to get information about processes exposing named pipes.☆36Updated 3 weeks ago
- ☆65Updated 2 weeks ago