#

privilege-escalation

Here are 175 public repositories matching this topic...

PayloadsAllTheThings

swisskyrepo / PayloadsAllTheThings

Sponsor

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

security hacking web-application cheatsheet enumeration penetration-testing bounty vulnerability methodology bugbounty pentest bypass payload payloads hacktoberfest privilege-escalation redteam

Updated Mar 15, 2022
Python

vitalysim / Awesome-Hacking-Resources

A collection of hacking / penetration testing resources to make you better!

exploit reverse-engineering malware mitm hacking owasp penetration-testing ctf privilege-escalation buffer-overflow windows-privilege-escalation privilege-escalation-linux

Updated Mar 20, 2022

traitor

liamg / traitor

Sponsor

⬆️

☠️

🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

exploit infosec privilege-escalation security-tools privesc hackthebox gtfobins redteam-tools cve-2021-3560 cve-2022-0847 dirtypipe

Updated Mar 10, 2022
Go

K8tools

k8gege / K8tools

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

database apt exploit scanner hacking password poc brute-force pentest bypass crack privilege-escalation 0day getshell netscan rar-mysql

Updated Mar 13, 2022
PowerShell

rmusser01 / Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

windows linux osx reverse-engineering hacking forensics penetration-testing infosec pentesting references information-security hacktoberfest privilege-escalation infosec-reference red-team blueteam hacking-simulator privilege-escalation-exploits hacktoberfest2021

Updated Mar 4, 2022
CSS

xairy / linux-kernel-exploitation

A collection of links related to Linux kernel security and exploitation

security exploit linux-kernel kernel-exploitation privilege-escalation

Updated Mar 9, 2022

S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

windows security attack active-directory hacking cheatsheet enumeration activedirectory penetration-testing cheat pentesting exploitation hacking-tool privilege-escalation cheat-sheet hacking-tools windows-active-directory active-directory-cheatsheet active-directory-exploitation hacking-cheasheet

Updated Jan 2, 2022

Ignitetechnologies / Privilege-Escalation

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

hack hacking cheatsheet ctf-writeups ctf vulnhub privilege-escalation oscp ctf-challenges oscp-journey oscp-prep

Updated Jan 3, 2021

S3cur3Th1sSh1t / WinPwn

Sponsor

Automation for internal Windows Penetrationtest / AD-Security

automation powershell pentesting recon exploitation privilege-escalation pentest-tool redteam powersploit adsecurity

Updated Feb 23, 2022
PowerShell

diego-treitos / linux-smart-enumeration

Linux enumeration tool for pentesting and CTFs with verbosity levels

hacking pentesting privilege-escalation oscp ctfs privesc hackthebox linux-enumeration

Updated Mar 20, 2022
Shell

ohpe / juicy-potato

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

windows privilege-escalation dcom rottenpotatong juicy-potato clsid

Updated Dec 18, 2021
C++

phpsploit

nil0x42 / phpsploit

Sponsor

Open

plugins/proclist: Implement a full-php way to get process list in Linux

2

nil0x42 commented Oct 3, 2020

Current implementation of proclist plugin uses win32_ps_list_procs() php function on Windows host.

Therefore, linux implementation is a simple system("ps -a"), which is OPSEC unsafe, an would probably trigger EDR alerts.

A better implementation should avoid relying on system command execution.

Read more

to be documented stealth good first issue

itm4n / PrivescCheck

Privilege Escalation Enumeration Script for Windows

windows pentesting privilege-escalation pentest-tool windows-privilege-escalation

Updated Mar 13, 2022
PowerShell

SUDO_KILLER

TH3xACE / SUDO_KILLER

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

sudo exploits ctf cve pentest privilege-escalation oscp pentest-tool linux-exploits oscp-journey misconfiguration oscp-tools oscp-prep sudo-exploitation abuse-sudo

Updated Feb 11, 2022
Shell

calebstewart / pwncat

Fancy reverse and bind shell handler

windows linux pty enumeration privilege-escalation persistance implant-deployment pwncat

Updated Mar 21, 2022
Python

xairy / kernel-exploits

My proof-of-concept exploits for the Linux kernel

exploit linux-kernel kernel-exploitation privilege-escalation

Updated Dec 25, 2021
C

Integration-IT / Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

windows security powershell active-directory hacking cheatsheet enumeration penetration-testing infosec pentesting exploitation hacking-tool privilege-escalation cheat-sheet hacking-tools windows-active-directory active-directory-cheatsheet active-directory-exploitation hacking-cheasheet

Updated Nov 14, 2020
PowerShell

quentinhardy / odat

ODAT: Oracle Database Attacking Tool

pentest oracle-database privilege-escalation pentest-tool

Updated Jul 21, 2021
Python

ihack4falafel / OSCP

Collection of things made during my OSCP journey

python c bash exploit scripts vbscript batch-script privilege-escalation buffer-overflow oscp privesc privilege-escalation-exploits oscp-journey

Updated Feb 24, 2022
Python

WADComs / WADComs.github.io

Sponsor

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

windows persistence commands cheatsheet enumeration exploitation privilege-escalation blueteam redteam wadcoms

Updated Mar 18, 2022
HTML

quentinhardy / msdat

MSDAT: Microsoft SQL Database Attacking Tool

pentest privilege-escalation mssql-database pentest-tool

Updated Mar 24, 2022
Python

m0nad / awesome-privilege-escalation

A curated list of awesome privilege escalation

docker awesome hacking nfs awesome-list pentesting ctf pentest privilege-escalation oscp dll-hijacking htb hack-the-box linux-enumeration

Updated Dec 22, 2021

ToRat

lu4p / ToRat

Sponsor

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Updated Mar 16, 2022
Go

initstring / dirty_sock

Linux privilege escalation exploit via snapd (CVE-2019-7304)

linux security privilege-escalation

Updated May 9, 2019
Python

mufeedvh / moonwalk

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻

🐚

linux security exploit infosec cve exploitation privilege-escalation security-tools redteam red-teaming redteam-tools infosectools

Updated Feb 12, 2022
Rust

metarget

Metarget / metarget

Metarget is a framework providing automatic constructions of vulnerable infrastructures.

kubernetes container target cloud-native vulnerabilities kernel-exploitation privilege-escalation container-security kubernetes-security container-escape cloud-native-security vulnerable-infrastructure vulnerable-scenes vulnerable-infrastructures

Updated Mar 23, 2022
Python

BeichenDream / BadPotato

Windows 权限提升 BadPotato

privilege-escalation potato badpotato pipepotato

Updated May 10, 2020
C#

lawrenceamer / 0xsp-Mongoose

Sponsor

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

windows agent security-audit toolkit mongoose webapi privilege-escalation security-tools impersonation redteaming redteam windows-vulnerability backdoor-attacks lateral-movement 0xsp-mongoose

Updated Feb 14, 2022
Pascal

deepce

stealthcopter / deepce

Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

enumeration exploits privilege-escalation privilege-escalation-exploits container-escape deepce docker-enumeration

Updated Nov 18, 2021
Shell

Anon-Exploiter / SUID3NUM

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Updated Aug 15, 2021
Python

Improve this page

Add a description, image, and links to the privilege-escalation topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the privilege-escalation topic, visit your repo's landing page and select "manage topics."