Alternatives and similar repositories for WusaBypassUAC

Users that are interested in WusaBypassUAC are comparing it to the libraries listed below

• SoufiyanAk / HiddenRDP-OPENER

  View on GitHub
  This script make any windows compatible with RDP connection
  ☆21Jul 28, 2025Updated 6 months ago
• Signal-Labs / Hotpatching_PoC

  View on GitHub
  ☆22Mar 6, 2023Updated 2 years ago
• SaadAhla / D1rkSleep

  View on GitHub
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆125Feb 13, 2023Updated 3 years ago
• passthehashbrowns / Being-A-Good-CLR-Host

  View on GitHub
  ☆86Jan 21, 2025Updated last year
• RonF98 / CVE-2024-43451-POC

  View on GitHub
  CVE-2024-43451 is a Windows NTLM vulnerability that allows an attacker to force authentication and capture NTLM hashes by using malicious…
  ☆15Jan 21, 2025Updated last year
• lsw29475 / CVE-2018-8611

  View on GitHub
  ☆11Apr 30, 2021Updated 4 years ago
• 0xJs / BYOVD_EDRKiller

  View on GitHub
  Proof of Concepts code for Bring Your Own Vulnerable Driver techniques
  ☆91Aug 21, 2025Updated 5 months ago
• G0ldenGunSec / DayBird

  View on GitHub
  Extension functionality for the NightHawk operator client
  ☆26Nov 3, 2023Updated 2 years ago
• proxytype / Hide-FS

  View on GitHub
  Inject dll to explorer.exe and hide file from process.
  ☆23Apr 24, 2021Updated 4 years ago
• internetangel / ZeroCrumb

  View on GitHub
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆166May 28, 2025Updated 8 months ago
• whokilleddb / BoosterDriver

  View on GitHub
  A step-by-step walkthrough of how to write a Client and a Driver to communicate with each other and boost the priority of a thread.
  ☆17Dec 12, 2023Updated 2 years ago
• tringi / winver

  View on GitHub
  Tiny Windows executable that outputs version information about the OS.
  ☆11Feb 1, 2026Updated 2 weeks ago
• dexterm300 / CVE-2025-62215-exploit-poc

  View on GitHub
  CVE-2025-62215 is an Elevation of Privilege (EoP) vulnerability in the Windows Kernel, disclosed in November 2025 and confirmed to be act…
  ☆26Nov 14, 2025Updated 3 months ago
• Wh04m1001 / UserManagerEoP

  View on GitHub
  ☆82Apr 9, 2024Updated last year
• zodiacon / WinEventHooks

  View on GitHub
  SetWinEventHook Sample
  ☆50Sep 23, 2023Updated 2 years ago
• Meowmycks / etwunhook

  View on GitHub
  Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.
  ☆53Feb 29, 2024Updated last year
• RayRRT / ESC1-unPAC

  View on GitHub
  A Beacon Object File (BOF) that performs the complete ESC1 attack chain in a single execution: certificate request with arbitrary SAN (+S…
  ☆113Dec 21, 2025Updated last month
• arsium / BypassGetModuleBaseAddressAndGetExportAddress

  View on GitHub
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆21Jul 9, 2022Updated 3 years ago
• ScriptIdiot / sleepmask_ekko_cfg

  View on GitHub
  Code snippets to add on top of cobalt strike sleepmask kit so that ekko can work in a CFG protected process
  ☆49Mar 15, 2023Updated 2 years ago
• itlabbet / uac-bypass

  View on GitHub
  UAC-ByPass utils
  ☆11Jan 28, 2022Updated 4 years ago
• SafeBreach-Labs / Win-DoS

  View on GitHub
  A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines
  ☆31Updated this week
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated 8 months ago
• rixoye / OffsetBypassAv

  View on GitHub
  ☆11Aug 8, 2022Updated 3 years ago
• yamakadi / ldr

  View on GitHub
  A work in progress BOF/COFF loader in Rust
  ☆50Mar 22, 2023Updated 2 years ago
• sud0Ru / CPLDCOMTrigger

  View on GitHub
  CPL remote trigger
  ☆43Dec 28, 2025Updated last month
• hackerhouse-opensource / Gigabyte_ElevatePersist

  View on GitHub
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆33Feb 2, 2026Updated last week
• s4dbrd / ETWReader

  View on GitHub
  Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich
  ☆17Jun 29, 2024Updated last year
• Tylous / Dent

  View on GitHub
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆15Apr 4, 2023Updated 2 years ago
• 0xhido / BlueLight

  View on GitHub
  Open-source EDR kernel-component for system monitoring and DLL injection
  ☆33Nov 14, 2020Updated 5 years ago
• Micats / WinhttpDownloader

  View on GitHub
  base on winHttp to develep download
  ☆12Apr 14, 2018Updated 7 years ago
• Flerov / EAKC-EnumAllKernelCallbacks

  View on GitHub
  Enumerate Callbacks and all Object Types
  ☆16Jan 9, 2023Updated 3 years ago
• Syhrularv / obfuscate

  View on GitHub
  # Bash Encrypter & Decrypter
  ☆15Sep 3, 2022Updated 3 years ago
• Elizarfish / CVE-2023-21823

  View on GitHub
  CVE-2023-21823 PoC
  ☆14Apr 20, 2023Updated 2 years ago
• scipag / ProxyExe

  View on GitHub
  Launch a Windows EXE file with this EXE file (application filter evasion)
  ☆15Mar 10, 2017Updated 8 years ago
• netbiosX / GhostLoader

  View on GitHub
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆53May 21, 2020Updated 5 years ago
• DeimosDemise / AbaddonDropper

  View on GitHub
  This is a free & Open source File dropper that is made strictly for EdUcAtIoNaL pUrPoSeS of course
  ☆32Jun 23, 2022Updated 3 years ago
• FuzzySecurity / Magikarp

  View on GitHub
  ECC Public Key Cryptography
  ☆37Oct 29, 2023Updated 2 years ago
• Maldev-Academy / RemoteTLSCallbackInjection

  View on GitHub
  Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process
  ☆286Jan 21, 2024Updated 2 years ago
• 808ale / NetRunners

  View on GitHub
  Reflective shellcode runners using obfuscated Win32 APIs in C# and C++ (GetProcAddress & GetModuleHandle). For penetration testing.
  ☆15Jul 17, 2025Updated 6 months ago