yanghaoi / LaunchSystemCmd
在权限足够的情况下弹出system权限的cmd命令行,包含exe和dll两种文件类型,可用于一些可能存在本地提权漏洞的测试。
☆33Updated 2 years ago
Alternatives and similar repositories for LaunchSystemCmd:
Users that are interested in LaunchSystemCmd are comparing it to the libraries listed below
- ☆25Updated last year
- 密码收集☆58Updated 2 years ago
- a 'pentest' udf plugin of MySQL.☆34Updated 2 years ago
- CrackMapExec extension module/protocol support☆42Updated last year
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user; Adding the sam_the_admin_maq when MachineAccoun…☆23Updated 8 months ago
- ☆49Updated last year
- dump lsass☆37Updated 2 years ago
- BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…☆71Updated last year
- ☆15Updated last year
- 利用EFSRPC协议批量探测出网☆65Updated last year
- 使用Csharp实现自动修改注册表键并强制锁屏,使其可被抓取明文密码。☆30Updated 4 years ago
- Search msDS-AllowedToActOnBehalfOfOtherIdentity☆35Updated 3 years ago
- Windows Api调用,用来绕过杀软添加用户☆22Updated 3 years ago
- ☆12Updated last year
- druid数据库密码解密☆31Updated last year
- c/s网络准入平台☆20Updated 2 years ago
- Bypass EDR Create TaskServers☆36Updated 2 years ago
- ☆33Updated last year
- ☆15Updated last year
- Domain penetration automation module one, domain information collection.☆18Updated last year
- ☆45Updated 3 years ago
- command execute without 445 port☆52Updated 2 years ago
- RPC 调用添加ssp扩展dump lsass☆17Updated 2 years ago
- 利用RPC服务,内网批量探测Windows出网☆14Updated 2 years ago
- Breaking fastjson with forward shell☆22Updated 2 years ago
- Tools developed during the personal learning process☆22Updated 3 years ago
- CobaltStrike profile by 风起☆37Updated 3 years ago
- CVE-2021-4034 for single commcand☆10Updated 2 years ago
- PortBender修改为exe版本☆24Updated last year
- Zerologon自动化脚本☆88Updated last year