zcgonvh / DCOMPotato
Some Service DCOM Object and SeImpersonatePrivilege abuse.
☆355Updated 2 years ago
Alternatives and similar repositories for DCOMPotato:
Users that are interested in DCOMPotato are comparing it to the libraries listed below
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆371Updated 2 years ago
- Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-softw…☆279Updated last year
- C2 redirector base on caddy☆202Updated 9 months ago
- PrintNotifyPotato☆513Updated 2 years ago
- CobaltStrike 4.0 - 4.5 Patch☆174Updated 2 years ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆312Updated 6 months ago
- Misc TaskScheduler Plays☆233Updated 2 years ago
- CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…☆217Updated last year
- Take a screenshot without injection for Cobalt Strike☆184Updated last year
- Dumping LSASS with a duplicated handle from custom LSA plugin☆200Updated 3 years ago
- Memshell☆271Updated 3 years ago
- NTLM relay test.☆187Updated last year
- 免杀学习笔记☆222Updated last year
- PE to shellcode☆186Updated 2 months ago
- nim,免杀,红队,shellcode,bypass,apt,bypass-av.☆200Updated 2 years ago
- UAC bypass for x64 Windows 7 - 11(无弹窗版)☆281Updated 2 years ago
- Use to build an anonymous SMB file server.☆229Updated 3 years ago
- not a reverse-engineered version of the Cobalt Strike Beacon☆355Updated 11 months ago
- PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers☆91Updated 2 years ago
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆154Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated last year
- Use python to perform Kerberos pre-auth bruteforcing☆195Updated last year
- C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection☆242Updated 3 years ago
- 基于golang实现的impacket☆243Updated last year
- Cobalt Strike AggressorScripts For Red Team☆154Updated 3 years ago
- Windows Token Stealing Expert☆466Updated last year
- CobaltStrike beacon written in golang☆408Updated last year
- Modular C2 framework aiming to ease post exploitation for red teamers.☆187Updated 2 years ago
- Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.☆238Updated 9 months ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆71Updated last year