Alternatives and similar repositories for TrustedInstallerPOC

Users that are interested in TrustedInstallerPOC are comparing it to the libraries listed below

• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆225Updated last year
• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆59Updated 2 weeks ago
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆42Updated last year
• nmantani / PS-MOTW
  PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)
  ☆43Updated last year
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆109Updated last week
• MalwareTech / HiddenDesktop
  Create and enumerate hidden desktops.
  ☆90Updated last year
• mlcsec / FormThief
  Spoofing desktop login applications with WinForms and WPF
  ☆176Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆73Updated last year
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆103Updated last year
• blue0x1 / uac-bypass-oneliners
  Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…
  ☆128Updated 7 months ago
• sensepost / mydumbedr
  ☆119Updated last year
• ELMERIKH / PyinMemoryPE
  execute PE in memory Filelessly
  ☆44Updated 6 months ago
• cybersectroll / TrollUAC
  ☆146Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• jdu2600 / Get-InjectedThreadEx
  Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
  ☆42Updated last year
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆42Updated 10 months ago
• EvilBytecode / EByte-Ransomware
  Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.
  ☆39Updated 3 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆137Updated 11 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆196Updated 6 months ago
• markuta / bw-dump
  A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.
  ☆41Updated last year
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆51Updated last year
• OtterHacker / Hooker
  ☆107Updated 9 months ago
• joe-desimone / rep-research
  ☆76Updated last year
• ghostpepper108 / Evasion
  ☆108Updated 2 years ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆135Updated last year
• MzHmO / Privileger
  Privileger is a tool to work with Windows Privileges
  ☆136Updated 2 years ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 4 months ago
• rara64 / GetTrustedInstaller
  Make an executable run with TrustedInstaller permissions under SYSTEM account.
  ☆40Updated 4 years ago
• tehstoni / tryharder
  C++ Staged Shellcode Loader with Evasion capabilities.
  ☆94Updated 10 months ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆75Updated 3 months ago