A curated set of offensive security notes on vulnerabilities, techniques, and tools
-
Updated
Jul 9, 2024
A curated set of offensive security notes on vulnerabilities, techniques, and tools
Identify privilege escalation paths within and across different clouds
WatsonPE is a small Local Privilege Escalation scan tool, to automate the LPE search on Windows workstations, servers or dc's.
A PowerShell malware that disables almost all the Windows Security features with UAC bypass.
Checker for CVE-2021-3156 with static version check
WallEscape vulnerability in util-linux
This repository contains my writeups for rooms created by TryHackMe
⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Audit and pentest methodologies for Windows including internal enumeration, privesc, lateral movement, etc.
Shared library implementations that transform the containing process into a shell when loaded (useful for privilege escalation, argument injection, file overwrites, LD_PRELOAD, etc.).
Ansible Role for AECID Testbed PostExploitation Tools
Linux enumeration tool for pentesting and CTFs with verbosity levels
Collection of PowerShell functions a Red Teamer may use in an engagement
CTF simple quick writeup
AECID Testbed Ansible Role to apply a weak sudo configuration on a server
Add a description, image, and links to the privesc topic page so that developers can more easily learn about it.
To associate your repository with the privesc topic, visit your repo's landing page and select "manage topics."