Alternatives and similar repositories for TrustedInstallerPOC

Users that are interested in TrustedInstallerPOC are comparing it to the libraries listed below

• itaymigdal / PichichiH0ll0wer
  Nim process hollowing loader
  ☆62Updated 6 months ago
• AlteredSecurity / Disable-TamperProtection
  A POC to disable TamperProtection and other Defender / MDE components
  ☆253Updated last year
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆108Updated 2 years ago
• EvilBytecode / EByte-Ransomware
  Go ransomware leveraging ChaCha20 and ECIES encryption with a web-based control panel.
  ☆46Updated 9 months ago
• sensepost / mydumbedr
  ☆120Updated 2 years ago
• Maldev-Academy / CodeSearchDemo
  ☆41Updated last year
• KingKDot / PowerCrypt
  The best powershell obfuscator ever made
  ☆120Updated 6 months ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆137Updated this week
• nmantani / PS-MOTW
  PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)
  ☆54Updated 2 years ago
• blue0x1 / uac-bypass-oneliners
  Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…
  ☆152Updated last year
• WKL-Sec / FuncAddressPro
  A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.
  ☆72Updated last year
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• EvilBytecode / Shellcode-Loader
  This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.
  ☆91Updated 9 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆44Updated 2 years ago
• cybersectroll / TrollUAC
  ☆144Updated last year
• hdks-bug / hermit
  A command and control framework.
  ☆54Updated last year
• SafeBreach-Labs / wd-pretender
  ☆133Updated 2 years ago
• MalwareTech / HiddenDesktop
  Create and enumerate hidden desktops.
  ☆88Updated 2 years ago
• termanix / TokenElevation
  Token Elevation to authorized user as SYSTEM or Domain Admins
  ☆25Updated 2 months ago
• hackerhouse-opensource / SetupHijack
  SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and up…
  ☆260Updated this week
• lewiswigmore / virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆60Updated 4 months ago
• Offensive-Panda / C2_Elevated_Shell_DLL_Hijcking
  DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…
  ☆44Updated last year
• IntelBroker / Endurance-Wiper
  a small wiper malware programmed in c#
  ☆59Updated 3 years ago
• Z4kSec / IoctlHunter
  IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
  ☆105Updated 2 years ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆143Updated last year
• brosck / APIHookingDetector
  「⚙️」Detect which native Windows API's (NtAPI) are being hooked
  ☆39Updated last year
• tanc7 / skidstorm
  ☆25Updated 10 months ago
• g3tsyst3m / CodefromBlog
  The code I write in my blog
  ☆62Updated last week
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆161Updated 5 months ago
• hwvs / Invoke-GPTObfuscation
  Powershell implementation of a novel technique. Invoke-GPTObfuscation is a PowerShell Obfuscator that utilizes OpenAI (and other APIs) to…
  ☆48Updated 2 years ago