xpn / Powershell-PostExploitationLinks
Scripts created to help with post exploitation of a Windows host
☆97Updated 4 years ago
Alternatives and similar repositories for Powershell-PostExploitation
Users that are interested in Powershell-PostExploitation are comparing it to the libraries listed below
Sorting:
- Juicy Potato for x86 Windows☆120Updated 5 years ago
- Changes for Visual Studio 2013☆117Updated 9 years ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆168Updated 2 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆143Updated 3 years ago
- Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution☆75Updated 4 years ago
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆63Updated 6 years ago
- Run Rubeus via Rundll32☆202Updated 5 years ago
- Impersonating authentication over HTTP and/or named pipes.☆134Updated 4 years ago
- Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)☆142Updated 6 years ago
- Windows Kernel Exploits☆66Updated 7 years ago
- ☆142Updated last year
- Dumping LAPS from Python☆267Updated 2 years ago
- ☆219Updated 2 years ago
- Weaponizing for privileged file writes bugs with windows problem reporting☆223Updated 3 years ago
- Loads a custom dll in system32 via diaghub.☆75Updated 5 years ago
- ☆45Updated 8 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆232Updated 3 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆227Updated 2 years ago
- Inject remote template link into word document for remote template injection☆177Updated 4 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆147Updated 4 years ago
- Python implementation for PetitPotam☆200Updated 3 years ago
- Powershell crazy and sometimes diabolic scripts☆156Updated 4 years ago
- Use CVE-2020-0668 to perform an arbitrary privileged file move operation.☆222Updated 5 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆204Updated 6 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆283Updated last year
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆329Updated 5 years ago
- ADCS abuser☆287Updated 2 years ago
- C implementation of the file-less UAC exploit☆74Updated 8 years ago
- mRemoteNG Config File Decrypt☆83Updated 2 years ago
- Office 365 and Exchange Enumeration☆186Updated 6 years ago