Lists (3)
Stars
Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData!
Extracts browser-stored data such as refresh tokens, cookies, saved credentials, credit cards, autofill entries, browsing history, and bookmarks from modern Chromium-based and Gecko-based browsers …
Impacket with --remove-mic-partial
CLI and validation tools for Kubelet Container Runtime Interface (CRI) .
A high-speed covert tunnel that disguises TCP traffic as SMTP email communication to bypass Deep Packet Inspection (DPI) firewalls.
Python tool to automatically perform SPN-less RBCD attacks.
POC tool to abuse windows server failover clusters
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
🚀 2024-至今 1Day 漏洞 PoC 深度研究与复现归档。涵盖 OA、ERP、安防、数通、大模型及容器等 高价值资产漏洞,实战导向,助力安全研究与合规检测。
Tool to enumerate privileged Scheduled Tasks on Remote Systems
Windows protocol library, including SMB and RPC implementations, among others.
Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)
Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and bookmarks
This C# tool sprays for admin access over the entire domain
Proof of concept for Kerberos Armoring abuse.
Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective
Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service loaders, set descriptions, and run them on demand.
Transferred from https://github.com/DoubleLabyrinth/how-does-SecureCRT-encrypt-password
a BOF implementation of various registry persistence methods
Various *nix tools built as statically-linked binaries