#Privilege-escalation
Showing 60 of 68 repositories tagged #privilege-escalation, ranked by stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A collection of hacking / penetration testing resources to make you better!
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A collection of links related to Linux kernel security and exploitation
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
📦 Make security testing of K8s, Docker, and Containerd easier.
Linux enumeration tool for pentesting and CTFs with verbosity levels
Automation for internal Windows Penetrationtest / AD-Security
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
A curated list of awesome privilege escalation
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
MSDAT: Microsoft SQL Database Attacking Tool
Collection of things made during my OSCP journey
Linux privilege escalation exploit via snapd (CVE-2019-7304)
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
Escalation of Privilege to the root through sudo binary with chroot option. CVE-2025-32463
Active Directory pentesting tool for Linux. Automated Kerberoasting, AS-REP Roasting, ADCS/ESC exploitation, DCSync, BloodHound integration, and 40+ AD attack paths. ENS Alto / NIS2 / ISO 27001 compliance reports. No Windows required.
EVA is an AI-assisted penetration testing agent that enhances offensive security workflows by providing structured attack guidance, contextual analysis, and multi-backend AI integration.
Automated DLL Hijacking Discovery, Validation, and Confirmation. Turning local misconfigurations into weaponized, confirmed attack paths.
A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life
Linux privilege escalation checks (systemd, dbus, socket fun, etc)
Multi-architecture Linux privilege escalation toolkit with 19 pre-built and runtime-compilable exploits. Auto-detects kernel version, filters patched exploits, tries each until root.
Scan 30+ AWS services. Find cost waste. Detect security gaps. Map your attack surface. One command.
Linux kernel module implementation & exploitation (pwn) labs.
Linux Privilege Escalation Tool
Collection of different exploits
This repository contains writeups for various CTFs I've participated in (Including Hack The Box).
The most comprehensive Hack The Box writeup collection - 500+ machines, 400+ challenges, interactive knowledge graph, skill trees, attack path diagrams, ProLabs, Sherlocks, OSCP/CPTS/CRTO prep. Browse: momenbasel.github.io/htb-writeups
CredsHunter - Credential Hunting scripts for Windows and Linux OS
Collection of script templates to create infinite UAC prompts forcing a user to run as admin ⚠
A curated list of awesome infosec blog posts, courses, books and more!
IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
Kubernetes security assessment CLI: RBAC, pod-escape, and privilege-escalation path analysis. Cloudsplaining for Kubernetes.
Hacking Methodology, Cheatsheats, Conceptual-Breakdowns
¿Quieres empezar en el mundo hacking? En esta revista te enseño a instalar Kali Linux desde cero y a manipular herramientas esenciales en el Hacking Ético.
A lightweight, multi-layer Linux sandbox combining namespaces, pivot_root, seccomp-bpf, capability dropping, and an evidence-based verdict engine (Truthimatics Public Version) for secure, auditable code execution.
Notes in preparation for the PNPT (Practical Network Penetration Testing) Certification Exam
Tools to bypass flawed SELinux policies using the init_module system call
This cheatsheet contains Active Directory (AD) exploitation techniques, showcasing methods used to identify and abuse misconfigurations or weaknesses within AD environments.
ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. The project models the problem as a sequence of actions to achieve privilege escalation from initial access to a target system.
CVE-2023-22515
All in one Pentest methodologies - Tools and commands | Where compiled all common materials for pentester
Curated precompiled Windows and Linux binaries for authorized pentesting, red teaming, Active Directory testing, privilege escalation labs, and post-exploitation research.
Interactive offensive security cheat sheet — 4500+ pentest commands across 50 categories with instant search, full CRUD, write-ups, favorites and variable fill-bar. OSCP/OSWE/OSEP/CPTS/CKS/CKA/DCA exam prep ready. Docker deployable.
A comprehensive hacking learning path covering Pentesting, OSINT, Linux, Networking, Web Application Security, Cryptography, Exploitation, Reverse Engineering, Forensics, CVEs, and CTF challenges. Perfect for beginners and professionals to master ethical hacking, penetration testing, and cybersecurity step by step. 🚀
SoK/Whitepaper on Offensive Operations against Active Directory Certificate Service
When it comes to exploiting web application security, this is a methodology. Enumeration and Networking guidelines are also listed to help while on a Pentest/CTF.
A portfolio demonstrating advanced blue and red team skills, including: SSH MFA implementation, Volatility-based memory forensics to detect code injection, Splunk threat hunting (BOTS v3), Wireshark C2 analysis, and kernel exploitation walkthroughs (LinPEAS, VulnHub).
privilege escalation POCs built in Rust.
Windows batch script for system enumeration and spotting privilege-escalation routes. Stock cmd.exe only: no PowerShell, no wmic, no external tools.
🔥Ready, Aim, Fire.🔥
Speeding up identifying which binaries with a SUID flag may lead to root access
Turn any RCE primitive into a semi-interactive shell with forward shell (mkfifo) and post-exploitation actions.