R41N3RZUF477 / QuickAssist_UAC_BypassLinks
UAC Bypass using UIAccess program QuickAssist
☆199Updated last week
Alternatives and similar repositories for QuickAssist_UAC_Bypass
Users that are interested in QuickAssist_UAC_Bypass are comparing it to the libraries listed below
Sorting:
- Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible☆253Updated 5 months ago
- This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.☆280Updated last month
- Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …☆290Updated last year
- Playing around with Thread Context Hijacking. Building more evasive primitives to use as alternative for existing process injection techn…☆191Updated 5 months ago
- Generic PE loader for fast prototyping evasion techniques☆240Updated last year
- Reflective shellcode loaderwith advanced call stack spoofing and .NET support.☆218Updated 2 months ago
- find dll base addresses without PEB WALK☆155Updated 4 months ago
- Bypass LSA protection using the BYODLL technique☆170Updated last year
- An example reference design for a proposed BOF PE☆190Updated 7 months ago
- Code execution/injection technique using DLL PEB module structure manipulation☆215Updated 6 months ago
- Sleep obfuscation☆252Updated 11 months ago
- BOF with Synthetic Stackframe☆194Updated last month
- Injecting DLL into LSASS at boot☆150Updated 7 months ago
- Proof of Concepts code for Bring Your Own Vulnerable Driver techniques☆195Updated 3 months ago
- TypeLib persistence technique☆136Updated last year
- Dumping App Bound Protected Credentials & Cookies Without Privileges.☆161Updated 6 months ago
- Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread☆255Updated 3 months ago
- Modern security products (CrowdStrike, Bitdefender, SentinelOne, etc.) hook the nLoadImage function inside clr.dll to intercept and scan …☆126Updated this week
- Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashing and custom indirect syscalls execution☆196Updated 6 months ago
- A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…☆166Updated last year
- ApexLdr is a DLL Payload Loader written in C☆113Updated last year
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆135Updated last year
- bring your own vulnerable driver☆113Updated 2 years ago
- C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, p…☆186Updated last week
- Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects☆129Updated 8 months ago
- Exploitation of echo_driver.sys☆168Updated 2 years ago
- Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)☆78Updated last year
- A reflective DLL development template for the Rust programming language☆110Updated last month
- A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …☆328Updated 9 months ago
- A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.☆156Updated last year