ycscaly / Privilege-Escalation-FrameworkLinks
Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitation methods(which are CVE-independent.)
☆35Updated 8 years ago
Alternatives and similar repositories for Privilege-Escalation-Framework
Users that are interested in Privilege-Escalation-Framework are comparing it to the libraries listed below
Sorting:
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆35Updated 8 years ago
- Win32k Elevation of Privilege Poc☆1Updated 6 years ago
- ☆36Updated 5 years ago
- A set of compiled application restriction bypasses☆29Updated 8 years ago
- UAC 0Day all day!☆57Updated 7 years ago
- Environmental (and http) keying for scripting languages☆39Updated 6 years ago
- ☆51Updated 8 years ago
- Mapping of Binaries that allows Arbitrary Code Execution☆25Updated 7 years ago
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆45Updated 8 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 8 years ago
- ☆22Updated 7 years ago
- IDA Pro plugin that rename functions on load, based on functionality☆19Updated 7 years ago
- Control Flow Guard Teleportation demo☆23Updated 5 years ago
- Some sample code from my Zero Nights 2017 presentation.☆61Updated 7 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆66Updated 7 years ago
- ☆25Updated 6 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- ☆17Updated 4 years ago
- ☆24Updated 8 years ago
- collection of useful shells for penetration tests☆37Updated 8 years ago
- a radare2 plugin that decodes packets with Scapy☆33Updated 7 years ago
- Mimikatz HashClash☆12Updated 10 years ago
- Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …☆59Updated 6 years ago
- Programmatically access a TLS certificate chain in C++ and C#☆13Updated 6 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆45Updated 8 years ago
- ☆45Updated 7 years ago
- A simple reflective dll example☆19Updated 8 years ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Updated 8 years ago
- A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates☆24Updated 6 years ago