R41N3RZUF477/QuickAssist_UAC_Bypass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/R41N3RZUF477/QuickAssist_UAC_Bypass)

R41N3RZUF477 / QuickAssist_UAC_Bypass

UAC Bypass using UIAccess program QuickAssist

☆217

Alternatives and similar repositories for QuickAssist_UAC_Bypass

Users that are interested in QuickAssist_UAC_Bypass are comparing it to the libraries listed below

Sorting:

0xHossam / HuffLoader
View on GitHub
Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
☆283Apr 6, 2025Updated 11 months ago
T3nb3w / ComDotNetExploit
View on GitHub
A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …
☆335Mar 6, 2025Updated last year
NtDallas / Draugr
View on GitHub
BOF with Synthetic Stackframe
☆230Oct 30, 2025Updated 4 months ago
JanielDary / ImmoralFiber
View on GitHub
Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
☆283Sep 18, 2024Updated last year
0xTriboulet / InlineExecuteEx
View on GitHub
A BOF that's a BOF Loader and more
☆199Jan 17, 2026Updated last month
tijme / relocatable
View on GitHub
Boilerplate to develop raw and truly Position Independent Code (PIC).
☆117Jan 20, 2025Updated last year
VoldeSec / PatchlessCLRLoader
View on GitHub
.NET assembly loader with patchless AMSI and ETW bypass
☆370Apr 19, 2023Updated 2 years ago
NetSPI / BOF-PE
View on GitHub
An example reference design for a proposed BOF PE
☆201Jan 23, 2026Updated last month
xforcered / ForsHops
View on GitHub
ForsHops
☆152Mar 25, 2025Updated 11 months ago
antonioCoco / SspiUacBypass
View on GitHub
Bypassing UAC with SSPI Datagram Contexts
☆462Sep 24, 2023Updated 2 years ago
racoten / BetterNetLoader
View on GitHub
A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
☆124Jul 11, 2025Updated 7 months ago
EricEsquivel / OpsLoader
View on GitHub
A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
☆45Sep 25, 2024Updated last year
deepinstinct / DCOMUploadExec
View on GitHub
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
☆382Dec 13, 2024Updated last year
iilegacyyii / DataInject-BOF
View on GitHub
Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
☆145Apr 18, 2025Updated 10 months ago
CodeXTF2 / WebcamBOF
View on GitHub
Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
☆158Mar 26, 2025Updated 11 months ago
NtDallas / KrakenMask
View on GitHub
Sleep obfuscation
☆270Dec 13, 2024Updated last year
Cobalt-Strike / icmp-udc2
View on GitHub
UDC2 implementation that provides an ICMP C2 channel
☆116Nov 24, 2025Updated 3 months ago
EricEsquivel / Inline-EA
View on GitHub
Cobalt Strike BOF for evasive .NET assembly execution
☆308Mar 31, 2025Updated 11 months ago
ewby / Mockingjay_BOF
View on GitHub
Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
☆158Nov 7, 2023Updated 2 years ago
silentwarble / Hannibal
View on GitHub
Mythic C2 Agent written in x64 PIC C
☆84Jan 29, 2025Updated last year
Meowmycks / koneko
View on GitHub
Robust Cobalt Strike shellcode loader with multiple advanced evasion features
☆200Apr 21, 2025Updated 10 months ago
jsecu / ModTask
View on GitHub
☆53Sep 23, 2025Updated 5 months ago
antroguy / GetAccessTokenWithSSOCookie
View on GitHub
☆50Jun 4, 2025Updated 9 months ago
ChoiSG / SharpSilentChrome
View on GitHub
SharpSilentChrome is a C# project that "silently" installs browser extensions on Google Chrome or MS Edge by updating the browsers' Prefe…
☆189Aug 6, 2025Updated 7 months ago
p0dalirius / FindProcessesWithNamedPipes
View on GitHub
A simple C++ Windows tool to get information about processes exposing named pipes.
☆40Mar 6, 2025Updated last year
tijme / nimplant-beacon-position-independent-c-code
View on GitHub
A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
☆67Feb 11, 2025Updated last year
reveng007 / DarkWidow
View on GitHub
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
☆779Jan 26, 2026Updated last month
zero2504 / COMouflage
View on GitHub
COM-based DLL Surrogate Injection
☆142Dec 9, 2025Updated 3 months ago
logangoins / Stifle
View on GitHub
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
☆150Feb 10, 2025Updated last year
sudonoodle / BOF-entra-authcode-flow
View on GitHub
Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
☆124Jan 17, 2026Updated last month
ricardojoserf / NativeBypassCredGuard
View on GitHub
Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
☆267Apr 8, 2025Updated 11 months ago
rad9800 / BootExecuteEDR
View on GitHub
☆409Dec 8, 2024Updated last year
Neo-Maoku / MultiTshProxy
View on GitHub
tsh多终端代理通信
☆19Feb 26, 2025Updated last year
NtDallas / OdinLdr
View on GitHub
Cobaltstrike Reflective Loader with Synthetic Stackframe
☆188Jan 17, 2026Updated last month
boku7 / StringReaper
View on GitHub
Reaping treasures from strings in remote processes memory
☆284Feb 8, 2025Updated last year
FalconForceTeam / bof-winrm-client
View on GitHub
☆126Jan 23, 2025Updated last year
logangoins / Krueger
View on GitHub
Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
☆424Sep 29, 2025Updated 5 months ago
grayhatkiller / SharpExShell
View on GitHub
SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
☆75May 1, 2024Updated last year
EspressoCake / BOF_NativeAPI_Definitions-VSCode
View on GitHub
A VSCode plugin to assist with BOF development.
☆37Aug 14, 2024Updated last year