Alternatives and similar repositories for SeRestoreAbuse

Users that are interested in SeRestoreAbuse are comparing it to the libraries listed below

• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆119Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆83Updated 3 years ago
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆214Updated last week
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆117Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆236Updated last year
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆91Updated last year
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆112Updated 3 years ago
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆137Updated last year
• CsEnox / SeManageVolumeExploit
  ☆117Updated 2 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆145Updated last year
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆322Updated 2 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆239Updated last year
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆80Updated 2 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆277Updated 3 years ago
• byronkg / SharpGPOAbuse
  Precompiled executable
  ☆55Updated 3 months ago
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆41Updated 2 years ago
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆72Updated 9 months ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆90Updated 4 years ago
• MzHmO / psexec_noinstall
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆169Updated 6 months ago
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆232Updated 2 years ago
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆136Updated last year
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆256Updated 2 years ago
• mandiant / ccmpwn
  ☆203Updated last year
• SolomonSklash / RubeusToCcache
  A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
  ☆57Updated 5 years ago
• MrAle98 / chisel
  A fast TCP/UDP tunnel over HTTP
  ☆21Updated 4 months ago
• X-C3LL / GPOwned
  Buggy script to play with GPOs
  ☆100Updated 5 months ago
• garrettfoster13 / aced
  ☆159Updated 6 months ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆291Updated 3 years ago
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆122Updated 4 years ago
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆302Updated 6 months ago