Alternatives and similar repositories for SeRestoreAbuse

Users that are interested in SeRestoreAbuse are comparing it to the libraries listed below

• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆126Updated last year
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆216Updated 3 weeks ago
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆91Updated last year
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆117Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆249Updated last year
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆137Updated last year
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆325Updated 2 years ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆84Updated 3 years ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆79Updated 2 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch
  Patch AMSI and ETW
  ☆240Updated last year
• CsEnox / SeManageVolumeExploit
  ☆141Updated 2 years ago
• hrtywhy / BOF-CobaltStrike
  Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.
  ☆114Updated 3 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆277Updated 3 years ago
• rasta-mouse / CsWhispers
  Source generator to add D/Invoke and indirect syscall methods to a C# project.
  ☆182Updated last year
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆41Updated 2 years ago
• powerseb / PowerExtract
  ☆118Updated 2 months ago
• garrettfoster13 / aced
  ☆160Updated 7 months ago
• xct / winpspy
  CLI monitor for windows process- & file activity
  ☆87Updated 4 years ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆92Updated 4 years ago
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆123Updated 5 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆146Updated last year
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆73Updated 10 months ago
• rootSySdk / PowerGPOAbuse
  Powershell version of SharpGPOAbuse
  ☆80Updated 4 years ago
• mandiant / ccmpwn
  ☆206Updated last year
• fashionproof / EnableAllTokenPrivs
  ☆85Updated 5 years ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆201Updated 8 months ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆124Updated 2 years ago
• MzHmO / TGSThief
  My implementation of the GIUDA project in C++
  ☆184Updated last year
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆305Updated 7 months ago
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆256Updated 2 years ago