Offensive-Panda / C2_Elevated_Shell_DLL_HijckingLinks
DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Security researchers identified this technique which uses a simplified process of DLL hijacking and mock folders to bypass UAC control. I tested this on Windows 10,11 and bypassed Windows 10 UAC security feature.
☆41Updated last year
Alternatives and similar repositories for C2_Elevated_Shell_DLL_Hijcking
Users that are interested in C2_Elevated_Shell_DLL_Hijcking are comparing it to the libraries listed below
Sorting:
- UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.☆48Updated last year
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆24Updated 8 months ago
- abusing Process Hacker driver to terminate other processes (BYOVD)☆82Updated 2 years ago
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆84Updated 2 years ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆70Updated last year
- Classic Process Injection with Memory Evasion Techniques implemantation☆70Updated last year
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆100Updated 2 years ago
- ☆36Updated 2 years ago
- ☆36Updated 2 years ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆28Updated 4 months ago
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆61Updated last year
- Unhook Ntdll.dll, Go & C++.☆22Updated last month
- Various methods of executing shellcode☆70Updated 2 years ago
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆48Updated last year
- Red Team Operation's Defense Evasion Technique.☆52Updated last year
- Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…☆62Updated last year
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆85Updated 2 years ago
- Proxy function calls through the thread pool with ease☆28Updated 3 months ago
- EmbedExeLnk by x86matthew modified by d4rkiZ☆41Updated 2 years ago
- Section-based payload obfuscation technique for x64☆59Updated 9 months ago
- Cortex EDR Ransomware protection Bypass☆24Updated 3 months ago
- Threadless shellcode injection tool☆64Updated 10 months ago
- DLL Exports Extraction BOF with optional NTFS transactions.☆82Updated 3 years ago
- Windows C++ Implant for Exploration C2☆31Updated last week
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆53Updated 2 years ago
- Direct syscalls Injection to bypass AV/EDR☆11Updated last year
- RDLL for Cobalt Strike beacon to silence sysmon process☆88Updated 2 years ago
- Encode shellcode into dictionary words for evasion and entropy reduction☆26Updated 7 months ago
- Shellcode Loader Utilizing ETW Events☆63Updated 3 months ago