Alternatives and similar repositories for Privilege-Escalation-Framework

Users that are interested in Privilege-Escalation-Framework are comparing it to the libraries listed below

• sekirkity / SeeCLRly
  Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
  ☆35Updated 8 years ago
• Iamgublin / CVE-2019-0803
  Win32k Elevation of Privilege Poc
  ☆1Updated 6 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• woanware / application-restriction-bypasses
  A set of compiled application restriction bypasses
  ☆29Updated 8 years ago
• FSecureLABS / defcon25_uac_workshop
  UAC 0Day all day!
  ☆57Updated 7 years ago
• leoloobeek / GoGreen
  Environmental (and http) keying for scripting languages
  ☆39Updated 6 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆51Updated 8 years ago
• SafeBreach-Labs / BACE
  Mapping of Binaries that allows Arbitrary Code Execution
  ☆25Updated 7 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆45Updated 8 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 8 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 7 years ago
• silascutler / IDA_AutoAnalysis
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Updated 7 years ago
• 86hh / cfg-teleport-demo
  Control Flow Guard Teleportation demo
  ☆23Updated 5 years ago
• tyranid / ZeroNights2017
  Some sample code from my Zero Nights 2017 presentation.
  ☆61Updated 7 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 7 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 6 years ago
• dzonerzy / winescalation
  Python based module to find common vulnerabilities which lead to Windows privilege escalation
  ☆32Updated 8 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆17Updated 4 years ago
• MortenSchenk / Babuska-Dolls
  ☆24Updated 8 years ago
• deadbits / shells
  collection of useful shells for penetration tests
  ☆37Updated 8 years ago
• guedou / r2scapy
  a radare2 plugin that decodes packets with Scapy
  ☆33Updated 7 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 10 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆59Updated 6 years ago
• malcomvetter / CertCheck
  Programmatically access a TLS certificate chain in C++ and C#
  ☆13Updated 6 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆45Updated 8 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 8 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆24Updated 6 years ago