privilege-escalation
There are 411 repositories under privilege-escalation topic.
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
vitalysim/Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
liamg/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
xairy/linux-kernel-exploitation
A collection of links related to Linux kernel security and exploitation
k8gege/K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
Threekiii/Awesome-Redteam
一个攻防知识库。A knowledge base for red teaming and offensive security.
diego-treitos/linux-smart-enumeration
Linux enumeration tool for pentesting and CTFs with verbosity levels
S3cur3Th1sSh1t/WinPwn
Automation for internal Windows Penetrationtest / AD-Security
Ignitetechnologies/Privilege-Escalation
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
calebstewart/pwncat
Fancy reverse and bind shell handler
ohpe/juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
nil0x42/phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
TH3xACE/SUDO_KILLER
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
p0dalirius/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
ihebski/A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
quentinhardy/odat
ODAT: Oracle Database Attacking Tool
WADComs/WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
xairy/kernel-exploits
My proof-of-concept exploits for the Linux kernel
mufeedvh/moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
m0nad/awesome-privilege-escalation
A curated list of awesome privilege escalation
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
Metarget/metarget
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
nickvourd/Windows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation Cookbook
lu4p/ToRat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
ihack4falafel/OSCP
Collection of things made during my OSCP journey
quentinhardy/msdat
MSDAT: Microsoft SQL Database Attacking Tool
BeichenDream/BadPotato
Windows 权限提升 BadPotato
M507/RamiGPT
Autonomous Privilege Escalation using AI
Getshell/LinuxTQ
《Linux提权方法论》
initstring/dirty_sock
Linux privilege escalation exploit via snapd (CVE-2019-7304)
Anon-Exploiter/SUID3NUM
A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)