Alternatives and similar repositories for Auto-Elevate

Users that are interested in Auto-Elevate are comparing it to the libraries listed below

• kindtime / nosferatu
  Windows NTLM Authentication Backdoor
  ☆241Updated 10 months ago
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆237Updated 3 years ago
• SecuProject / DLLHijackingScanner
  This is a PoC for bypassing UAC using DLL hijacking and abusing the "Trusted Directories" verification.
  ☆278Updated 4 years ago
• Sh0ckFR / Lockbit3.0-MpClient-Defender-PoC
  Lockbit3.0 Microsoft Defender MpClient.dll DLL Hijacking PoC
  ☆179Updated 3 years ago
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆382Updated 2 years ago
• mdsecactivebreach / DragonCastle
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆301Updated 3 years ago
• Gr1mmie / AtlasC2
  C# C2 Framework centered around Stage 1 operations
  ☆210Updated 3 years ago
• sailay1996 / CdpSvcLPE
  Windows Local Privilege Escalation via CdpSvc service (Writeable SYSTEM path Dll Hijacking)
  ☆254Updated 3 years ago
• adamsvoboda / nim-loader
  WIP shellcode loader in nim with EDR evasion techniques
  ☆220Updated 3 years ago
• embee-research / Randomise-api-hashes-cobalt-strike
  Bypass Detection By Randomising ROR13 API Hashes
  ☆144Updated 3 years ago
• eladshamir / RPC-Backdoor
  A basic emulation of an "RPC Backdoor"
  ☆243Updated 3 years ago
• exploitblizzard / WindowsMDM-LPE-0Day
  CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day
  ☆51Updated 3 years ago
• yashmundra / Shellcode-Encryption
  Encrypting shellcode to Bypass AV
  ☆71Updated 6 years ago
• cube0x0 / MiniDump
  C# Lsass parser
  ☆298Updated 4 years ago
• plackyhacker / Suspended-Thread-Injection
  Another meterpreter injection technique using C# that attempts to bypass Defender
  ☆262Updated 4 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆292Updated 2 years ago
• Flangvik / DLLSideloader
  PowerShell script to generate "proxy" counterparts to easily perform DLL Sideloading
  ☆130Updated 6 years ago
• klezVirus / CandyPotato
  Pure C++, weaponized, fully automated implementation of RottenPotatoNG
  ☆313Updated 4 years ago
• APTortellini / DefenderSwitch
  Stop Windows Defender using the Win32 API
  ☆192Updated 3 years ago
• Ondrik8 / byPass_AV
  ☆153Updated 4 years ago
• pwn1sher / WMEye
  WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement
  ☆371Updated 3 years ago
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆338Updated 3 years ago
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆202Updated 3 years ago
• t3hbb / NSGenCS
  Extendable payload obfuscation and delivery framework
  ☆145Updated 3 years ago
• Wh04m1001 / IFaultrepElevatedDataCollectionUAC
  ☆132Updated 3 years ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆312Updated 2 years ago
• boku7 / injectEtwBypass
  CobaltStrike BOF - Inject ETW Bypass into Remote Process via Syscalls (HellsGate|HalosGate)
  ☆299Updated 4 years ago
• m3rcer / Chisel-Strike
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆460Updated last year
• RikunjSindhwad / MSSQL-Attacker
  MSSQL Database Attacker tool
  ☆193Updated 3 years ago
• IkerSaint / KingHamlet
  Process Ghosting Tool
  ☆174Updated 4 years ago