AzAgarampur / byeintegrity5-uac
Bypass UAC at any level by abusing the Task Scheduler and environment variables
☆31Updated 3 years ago
Alternatives and similar repositories for byeintegrity5-uac:
Users that are interested in byeintegrity5-uac are comparing it to the libraries listed below
- A repository filled with ideas to break/detect direct syscall techniques☆27Updated 2 years ago
- ☆15Updated 4 years ago
- Process Injection: APC Injection☆29Updated 4 years ago
- A simple dumper as FreshyCalls' PoC. That's what's trendy, isn't it? ¯\_(ツ)_/¯☆40Updated 4 years ago
- POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritti…☆40Updated 3 years ago
- Process Hollowing POC in CPP☆15Updated 4 years ago
- ☆39Updated 3 years ago
- A PoC tool for exploiting leaked process and thread handles☆30Updated last year
- Unhooks Bit Defender from NTDLL and KERNELBASE using a classic technique.☆54Updated last year
- A simple PE loader.☆25Updated 2 years ago
- Process Hollowing demonstration & explanation☆35Updated 4 years ago
- Bypass UAC elevation on Windows 8 (build 9600) & above.☆54Updated 2 years ago
- Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping☆54Updated 2 years ago
- Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers☆18Updated 3 years ago
- ☆37Updated last year
- ZwProcessHollowing is a x64 process hollowing project which uses direct systemcalls, dll unhooking and RC4 payload decryption☆84Updated 2 years ago
- ☆50Updated 4 years ago
- A more advanced free and open .NET obfuscator using dnlib.☆10Updated 2 years ago
- Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules☆41Updated last year
- ☆60Updated 3 years ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆28Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆37Updated 3 years ago
- Enabled / Disable LSA Protection via BYOVD☆66Updated 3 years ago
- Collection of shellcode injection and execution techniques☆16Updated 3 years ago
- Bypass UAC by abusing the Internet Explorer Add-on installer☆51Updated 3 years ago
- Hacky code for extracting calls in DLLs by function☆14Updated 2 years ago
- yet another sleep encryption thing. also used the default github repo name for this one.☆70Updated last year
- A Bumblebee-inspired Crypter☆80Updated 2 years ago
- Get your data from the resource section manually, with no need for windows apis☆59Updated 5 months ago
- Research into removing strings & API call references at compile-time (Anti-Analysis)☆25Updated 10 months ago