Alternatives and similar repositories for MS-URI-Handlers:

Users that are interested in MS-URI-Handlers are comparing it to the libraries listed below

• 3gstudent / ntfsDump
  Use to copy a file from an NTFS partitioned volume by reading the raw volume and parsing the NTFS structures.
  ☆113Updated 3 years ago
• Tw1sm / SharpInjector
  Flexible C# shellcode runner
  ☆38Updated 3 years ago
• netero1010 / TrustedPath-UACBypass-BOF
  Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.…
  ☆128Updated 3 years ago
• py7hagoras / GetSystem
  This is a C# implementation of making a process/executable run as NT AUTHORITY/SYSTEM. This is achieved through parent ID spoofing of alm…
  ☆105Updated 2 years ago
• sexyiam / UAC-Bypass
  UAC Bypass via CMUACUtil & PEB Enumeration, Undetected for now.
  ☆45Updated 9 months ago
• Kara-4search / BypassETW_CSharp
  Bypassing ETW with Csharp
  ☆26Updated 3 years ago
• Tylous / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆21Updated last year
• SECFORCE / SharpWhispers
  C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.
  ☆103Updated last year
• anthemtotheego / Detect-Hooks
  Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR
  ☆155Updated 3 years ago
• p3nt4 / RunDLL.Net
  Execute .Net assemblies using Rundll32.exe
  ☆110Updated 3 years ago
• Hagrid29 / RemotePatcher
  Patch AMSI and ETW in remote process via direct syscall
  ☆81Updated 2 years ago
• DamonMohammadbagher / NativePayload_CBT
  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
  ☆116Updated last year
• rasta-mouse / DInvoke
  Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
  ☆150Updated last year
• OtterHacker / SetProcessInjection
  ☆147Updated last year
• S4ntiagoP / freeBokuLoader
  A simple BOF that frees UDRLs
  ☆115Updated 2 years ago
• 0xthirteen / PerfExec
  ☆77Updated last year
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆79Updated 2 years ago
• APTortellini / DefenderSwitch
  Stop Windows Defender using the Win32 API
  ☆192Updated 3 years ago
• jsecurity101 / RandomPOCs
  Repo that holds random POCs
  ☆48Updated last year
• Kara-4search / HellgateLoader_CSharp
  Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.
  ☆16Updated 3 years ago
• leftp / BackupCreds
  A C# implementation of dumping credentials from Windows Credential Manager
  ☆56Updated last year
• Kara-4search / FullDLLUnhooking_CSharp
  Unhook DLL via cleaning the DLL 's .text section
  ☆9Updated 3 years ago
• roberreigada / LsassUnhooker
  Little program written in C# to bypass EDR hooks and dump the content of the lsass process
  ☆61Updated 3 years ago
• S4ntiagoP / donut
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆111Updated last year
• RedTeamOperations / VEH-PoC
  ☆112Updated 2 years ago
• bohops / DynamicDotNet
  A collection of various and sundry code snippets that leverage .NET dynamic tradecraft
  ☆139Updated 9 months ago
• sailay1996 / windows-stuff
  my learning case about windows
  ☆21Updated 3 years ago
• p0dalirius / pydsinternals
  A Python native library containing necessary classes, functions and structures to interact with Windows Active Directory.
  ☆58Updated last week
• ceramicskate0 / SharpExchange
  C# Tool to interact with MS Exchange based on MS docs
  ☆99Updated 2 years ago
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆27Updated last year