Stars
A GUI client for Windows, support Xray core and v2fly core and others
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
Identifies the bytes that Microsoft Defender flags on.
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
A tool to create a JScript file which loads a .NET v2 assembly from memory.
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
A method of bypassing EDR's active projection DLL's by preventing entry point exection
Writing custom backdoor payloads with C# - Defcon 27 Workshop
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…
A tool to elevate privilege with Windows Tokens
RunasCs - Csharp and open version of windows builtin runas.exe
PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.
DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
Hunts out CobaltStrike beacons and logs operator command output
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.