zcgonvh / DCOMPotato
Some Service DCOM Object and SeImpersonatePrivilege abuse.
☆356Updated 2 years ago
Alternatives and similar repositories for DCOMPotato:
Users that are interested in DCOMPotato are comparing it to the libraries listed below
- Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do☆371Updated 2 years ago
- Modify version of impacket wmiexec.py, get output(data,response) from registry, don't need SMB connection, also bypassing antivirus-softw…☆279Updated 2 years ago
- C2 redirector base on caddy☆203Updated 10 months ago
- CobaltStrike 4.0 - 4.5 Patch☆175Updated 2 years ago
- GetProcAddressByHash/remap/full dll unhooking/Tartaru's Gate/Spoofing Gate/universal/Perun's Fart/Spoofing-Gate/EGG/RecycledGate/syswhisp…☆315Updated 7 months ago
- PrintNotifyPotato☆518Updated 2 years ago
- Misc TaskScheduler Plays☆232Updated 2 years ago
- Take a screenshot without injection for Cobalt Strike☆185Updated last year
- Dumping LSASS with a duplicated handle from custom LSA plugin☆200Updated 3 years ago
- CrossC2 developed based on the Cobalt Strike framework can be used for other cross-platform system control. CrossC2Kit provides some inte…☆218Updated last year
- UAC bypass for x64 Windows 7 - 11(无弹窗版)☆280Updated 2 years ago
- NTLM relay test.☆187Updated last year
- PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers☆92Updated 2 years ago
- Memshell☆273Updated 3 years ago
- PE to shellcode☆190Updated 3 months ago
- not a reverse-engineered version of the Cobalt Strike Beacon☆356Updated last year
- Modular C2 framework aiming to ease post exploitation for red teamers.☆188Updated 2 years ago
- nim,免杀,红队,shellcode,bypass,apt,bypass-av.☆201Updated 2 years ago
- Use python to perform Kerberos pre-auth bruteforcing☆198Updated 2 years ago
- Use to build an anonymous SMB file server.☆229Updated 3 years ago
- 免杀学习笔记☆221Updated last year
- Windows Token Stealing Expert☆468Updated last year
- ☆238Updated last year
- A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.☆157Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks Rewrite In C#☆88Updated last year
- 基于golang实现的impacket☆243Updated last year
- Cobalt Strike AggressorScripts For Red Team☆154Updated 3 years ago
- Amaterasu terminates, or inhibits, protected processes such as application control and AV/EDR solutions by leveraging the Sysinternals Pr…☆71Updated last year
- Credential Guard Bypass Via Patching Wdigest Memory☆321Updated 2 years ago
- A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/☆187Updated 3 years ago