Alternatives and similar repositories for DccwBypassUAC

Users that are interested in DccwBypassUAC are comparing it to the libraries listed below

• sailay1996 / UAC_Bypass_In_The_Wild

  View on GitHub
  Windows 10 UAC bypass for all executable files which are autoelevate true .
  ☆642Dec 9, 2019Updated 6 years ago
• forrest-orr / phantom-dll-hollower-poc

  View on GitHub
  Phantom DLL hollowing PoC
  ☆370May 23, 2022Updated 3 years ago
• med0x2e / ExecuteAssembly

  View on GitHub
  Load/Inject .NET assemblies by; reusing the host (spawnto) process loaded CLR AppDomainManager, Stomping Loader/.NET assembly PE DOS head…
  ☆595Jul 26, 2021Updated 4 years ago
• 0xbadjuju / Tokenvator

  View on GitHub
  A tool to elevate privilege with Windows Tokens
  ☆1,055Oct 6, 2023Updated 2 years ago
• xuanxuan0 / DripLoader

  View on GitHub
  Evasive shellcode loader for bypassing event-based injection detection (PoC)
  ☆822Aug 23, 2021Updated 4 years ago
• LloydLabs / delete-self-poc

  View on GitHub
  A way to delete a locked file, or current running executable, on disk.
  ☆616Nov 5, 2025Updated 3 months ago
• antonioCoco / RoguePotato

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,148Jan 9, 2021Updated 5 years ago
• p3nt4 / PowerShdll

  View on GitHub
  Run PowerShell with rundll32. Bypass software restrictions.
  ☆1,823Mar 17, 2021Updated 4 years ago
• jthuraisamy / SysWhispers

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,988Jan 1, 2023Updated 3 years ago
• hfiref0x / UACME

  View on GitHub
  Defeating Windows User Account Control
  ☆7,350Jan 11, 2026Updated last month
• dotfornet / WindowsUtil

  View on GitHub
  ☆14Jan 10, 2017Updated 9 years ago
• ChaitanyaHaritash / Callback_Shellcode_Injection

  View on GitHub
  POCs for Shellcode Injection via Callbacks
  ☆411Feb 23, 2021Updated 4 years ago
• AzureGreen / WinNT-Learning

  View on GitHub
  Notes my learning steps about Windows-NT
  ☆23May 18, 2017Updated 8 years ago
• tyranid / DotNetToJScript

  View on GitHub
  A tool to create a JScript file which loads a .NET v2 assembly from memory.
  ☆1,316Jan 18, 2021Updated 5 years ago
• outflanknl / WdToggle

  View on GitHub
  A Beacon Object File (BOF) for Cobalt Strike which uses direct system calls to enable WDigest credential caching.
  ☆220May 3, 2023Updated 2 years ago
• mq1n / Wow64SyscallHook

  View on GitHub
  Wow64 syscall hook
  ☆42May 28, 2017Updated 8 years ago
• sailay1996 / UAC_bypass_windows_store

  View on GitHub
  Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)
  ☆267Dec 19, 2019Updated 6 years ago
• 0x09AL / RdpThief

  View on GitHub
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆1,422Jul 20, 2024Updated last year
• itm4n / UsoDllLoader

  View on GitHub
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆402Jun 6, 2020Updated 5 years ago
• Mattiwatti / PPLKiller

  View on GitHub
  Protected Processes Light Killer
  ☆979Mar 24, 2023Updated 2 years ago
• SpiderLabs / SharpCompile

  View on GitHub
  SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…
  ☆290Aug 7, 2020Updated 5 years ago
• jackullrich / ShellcodeStdio

  View on GitHub
  An extensible framework for easily writing compiler optimized position independent x86 / x64 shellcode for windows platforms.
  ☆532Jul 2, 2025Updated 7 months ago
• jxy-s / herpaderping

  View on GitHub
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆1,182Jul 5, 2023Updated 2 years ago
• scrt / avcleaner

  View on GitHub
  C/C++ source obfuscator for antivirus bypass
  ☆1,060Mar 10, 2022Updated 3 years ago
• bats3c / ChromeTools

  View on GitHub
  A collection of tools to abuse chrome browser
  ☆298Jan 15, 2021Updated 5 years ago
• joshfaust / Alaris

  View on GitHub
  A protective and Low Level Shellcode Loader that defeats modern EDR systems.
  ☆917Mar 20, 2024Updated last year
• CCob / SharpBlock

  View on GitHub
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,164Mar 31, 2021Updated 4 years ago
• int0 / ltmdm64_poc

  View on GitHub
  ☆30May 23, 2017Updated 8 years ago
• padovah4ck / CVE-2020-0683

  View on GitHub
  CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege
  ☆338Dec 23, 2021Updated 4 years ago
• monoxgas / sRDI

  View on GitHub
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,497Nov 15, 2023Updated 2 years ago
• ChoiSG / UuidShellcodeExec

  View on GitHub
  PoC for UUID shellcode execution using DInvoke
  ☆155Mar 8, 2021Updated 4 years ago
• jthuraisamy / SysWhispers2

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,789Sep 3, 2022Updated 3 years ago
• killvxk / VoxDebugger

  View on GitHub
  An analytical debugger programmed in C++, using Qt.
  ☆22May 20, 2012Updated 13 years ago
• ionescu007 / faxhell

  View on GitHub
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆330May 3, 2020Updated 5 years ago
• Moriarty2016 / NimRDI

  View on GitHub
  RDI implementation in Nim
  ☆64Dec 12, 2020Updated 5 years ago
• phra / PEzor

  View on GitHub
  Open-Source Shellcode & PE Packer
  ☆2,063Feb 3, 2024Updated 2 years ago
• zer0mem / HowToBoostPatchGuard

  View on GitHub
  more at http://www.zer0mem.sk/?p=271
  ☆12Jun 11, 2013Updated 12 years ago
• itm4n / PPLdump

  View on GitHub
  Dump the memory of a PPL with a userland exploit
  ☆891Jul 24, 2022Updated 3 years ago
• bufferbandit / silent_cleanup_uac_bypass

  View on GitHub
  Silent Cleanup UAC Bypass POC
  ☆11Dec 15, 2019Updated 6 years ago