FourCoreLabs / TrustedInstallerPOCLinks
A simple go Proof of Concept to start a new shell as TrustedInstaller
☆59Updated 2 years ago
Alternatives and similar repositories for TrustedInstallerPOC
Users that are interested in TrustedInstallerPOC are comparing it to the libraries listed below
Sorting:
- Create and enumerate hidden desktops.☆90Updated last year
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu…☆44Updated last year
- A POC to disable TamperProtection and other Defender / MDE components☆226Updated last year
- A stealthy, assembly-based tool for secure function address resolution, offering a robust alternative to GetProcAddress.☆73Updated last year
- ☆108Updated 10 months ago
- Nim process hollowing loader☆59Updated 2 months ago
- The best powershell obfuscator ever made☆112Updated last month
- ☆121Updated last year
- A command and control framework.☆54Updated 8 months ago
- PS-MOTW: PowerShell scripts to set / show / remove MOTW (Mark of the Web)☆44Updated last year
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 5 months ago
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆52Updated last year
- Demoting PPL anti-malware services to less than a guest user☆63Updated 7 months ago
- PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record☆42Updated last year
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆42Updated 11 months ago
- This project is an implant framework designed for long term persistent access to Windows machines.☆110Updated last year
- Bypasses AMSI protection through remote memory patching and parsing technique.☆50Updated 4 months ago
- Comprehensive Windows Syscall Extraction & Analysis Framework☆124Updated 3 weeks ago
- Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation☆31Updated 2 years ago
- Backdooring VSCode Projects☆79Updated 3 months ago
- ☆145Updated last year
- Situational Awareness script to identify how and where to run implants☆65Updated 9 months ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆81Updated 4 months ago
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆134Updated last year
- Payload encoding utility to effectively lower payload entropy.☆119Updated 5 months ago
- ☆40Updated last year
- ☆108Updated 2 years ago
- Shellcode loader using direct syscalls via Hell's Gate and payload encryption.☆91Updated last year
- UAC Bypass using CMSTP in Rust☆32Updated 9 months ago
- Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2☆46Updated last year