yanghaoi / LaunchSystemCmd
在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。
☆32Updated 2 years ago
Related projects: ⓘ
- a 'pentest' udf plugin of MySQL.☆34Updated 2 years ago
- ☆31Updated this week
- 利用RPC服务,内网批量探测Windows出网☆14Updated 2 years ago
- 检测域内常见一把梭漏洞,包括:NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare☆28Updated 10 months ago
- 陆续补充一些自己写的cobaltstrike插件☆46Updated 2 years ago
- CrackMapExec extension module/protocol support☆40Updated last year
- ☆23Updated last year
- 密码收集☆58Updated 2 years ago
- CobaltStrike profile by 风起☆39Updated 2 years ago
- ☆15Updated last year
- Domain penetration automation module one, domain information collection.☆18Updated last year
- druid数据库密码解密☆30Updated last year
- c/s网络准入平台☆20Updated last year
- 导出coremail联系人☆18Updated last year
- ☆12Updated last year
- Windows Api调用,用来绕过杀软添加用户☆22Updated 3 years ago
- ☆41Updated this week
- windows 添加管理员--Rust版本☆41Updated 2 years ago
- 使用Csharp实现自动修改注册表键并强制锁屏,使其可被抓取明文密码。☆29Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆23Updated 3 months ago
- 浏览器模拟爆破,支持CSS选择器☆18Updated last year
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆65Updated last year
- cobaltstrike免杀插件☆21Updated 2 years ago
- Breaking fastjson with forward shell☆23Updated 2 years ago
- 一个用于隐藏C2的、开箱即用的反向代理服务器。旨在省去繁琐的配置Nginx服务的过程。☆11Updated 2 years ago
- KillDefender的实现☆12Updated 2 years ago
- ☆28Updated this week
- command execute without 445 port☆50Updated 2 years ago
- Redis 沙盒逃逸(CVE-2022-0543)POC&EXP☆22Updated 2 years ago