Alternatives and similar repositories for TrustedInstallerPOC:

Users that are interested in TrustedInstallerPOC are comparing it to the libraries listed below

• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆201Updated 9 months ago
• blue0x1 / uac-bypass-oneliners
  Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…
  ☆104Updated 2 months ago
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆87Updated 2 weeks ago
• tehstoni / RustyKeys
  UAC Bypass using CMSTP in Rust
  ☆25Updated 3 months ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆90Updated last month
• hideckies / hermit
  A command and control framework.
  ☆49Updated 3 months ago
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆56Updated 7 months ago
• nmantani / PS-MOTW
  PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)
  ☆36Updated last year
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆59Updated 8 months ago
• ghostpepper108 / Evasion
  ☆107Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• mranv / adPentest
  Windows Active DIrectory Pentesting documentation.
  ☆17Updated 9 months ago
• ZERODETECTION / MSC_Dropper
  ☆146Updated 7 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆81Updated 2 weeks ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆144Updated 10 months ago
• b4keSn4ke / Invoke-WinSATBypass
  Powershell UAC Bypass script leveraging WinSAT.exe
  ☆16Updated 3 years ago
• EvilBytecode / Lifetime-AmsiBypass
  Lifetime AMSI bypass.
  ☆35Updated 9 months ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆164Updated last month
• Chainski / ForceAdmin
  Collection of script templates to create infinite UAC prompts forcing a user to run as admin ⚠
  ☆102Updated last week
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆184Updated last month
• MzHmO / DebugAmsi
  DebugAmsi is another way to bypass AMSI through the Windows process debugger mechanism.
  ☆96Updated last year
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆41Updated 10 months ago
• sensepost / mydumbedr
  ☆114Updated last year
• ZeroMemoryEx / CVE-2025-26125
  (0day) Local Privilege Escalation in IObit Malware Fighter
  ☆116Updated 2 months ago
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆98Updated last year
• jakobfriedl / BenevolentLoader
  Shellcode loader using direct syscalls via Hell's Gate and payload encryption.
  ☆88Updated 9 months ago
• Cipher7 / havoc-PoolParty
  Windows Thread Pool Injection Havoc Implementation
  ☆28Updated last year
• ProcessusT / Dictofuscation
  Obfuscate the bytes of your payload with an association dictionary
  ☆33Updated 4 months ago
• furax124 / Protect_Loader
  A fucking real shellcode loader with a GUI. Work-in-Progress.
  ☆71Updated 2 months ago