xct / SeRestoreAbuseLinks
SeRestorePrivilege to SYSTEM
☆122Updated 3 years ago
Alternatives and similar repositories for SeRestoreAbuse
Users that are interested in SeRestoreAbuse are comparing it to the libraries listed below
Sorting:
- SeManageVolumePrivilege to SYSTEM☆131Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- A collection of code snippets built to assist with breaking chains.☆123Updated last year
- A variety of AV evasion techniques written in C# for practice.☆95Updated 4 years ago
- AV Evasion Techniques☆79Updated 3 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆139Updated last year
- Attempt at Obfuscated version of SharpCollection☆219Updated this week
- PoC to coerce authentication from Windows hosts using MS-WSP☆258Updated last year
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆116Updated 3 years ago
- Buggy script to play with GPOs☆115Updated 7 months ago
- My implementation of the GIUDA project in C++☆185Updated 2 years ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated last year
- Patching AmsiOpenSession by forcing an error branching☆148Updated 2 years ago
- ☆88Updated 5 years ago
- ☆169Updated last year
- Powershell version of SharpGPOAbuse☆85Updated 4 years ago
- Patch AMSI and ETW☆246Updated last year
- Code dump from PEN-300/OSEP updated 2022☆41Updated 3 years ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆107Updated 3 years ago
- ☆212Updated last year
- Payload Generation Framework☆94Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆75Updated last year
- The Official Sliver Armory☆114Updated 4 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆139Updated 4 months ago
- ADCS cert template modification and ACL enumeration☆142Updated 2 years ago
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆73Updated 3 years ago
- ☆152Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆117Updated 2 years ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆208Updated last week
- Havoc C2 profile generator☆92Updated last month