bytecode77 / slui-file-handler-hijack-privilege-escalationLinks
Slui File Handler Hijack UAC Bypass Local Privilege Escalation
☆92Updated 3 years ago
Alternatives and similar repositories for slui-file-handler-hijack-privilege-escalation
Users that are interested in slui-file-handler-hijack-privilege-escalation are comparing it to the libraries listed below
Sorting:
- Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM☆115Updated 5 years ago
- Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.☆151Updated 4 years ago
- Weaponizing Gigabyte driver for priv escalation and bypass PPL☆68Updated 5 years ago
- Example code for EDR bypassing☆150Updated 6 years ago
- C++ implant that interfaces with a SK8PARK server☆49Updated 3 years ago
- A simple COM server which provides a component to run shellcode☆135Updated 5 years ago
- External C2 Using IE COM Objects☆100Updated 6 years ago
- Injects shellcode into remote processes using direct syscalls☆78Updated 4 years ago
- Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.☆76Updated 5 years ago
- A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…☆96Updated 5 years ago
- C++ function that will automagically unhook a specified Windows API☆62Updated 4 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆119Updated 4 years ago
- Overwrite a process's recovery callback and execute with WER☆103Updated 3 years ago
- Initial Commit of Coresploit☆56Updated 3 years ago
- Shellcode injector using direct syscalls☆119Updated 4 years ago
- Evasive Process Hollowing Techniques☆139Updated 4 years ago
- Adds a user-mode asynchronous procedure call (APC) object to the APC queue of the specified thread and spoof the Parent Process.☆158Updated 5 years ago
- Lonely x64 binary to Bypass Win10 UAC utilizing ALPC method with [command line]☆32Updated last year
- C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread☆119Updated 6 years ago
- foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV☆113Updated 3 years ago
- Sysmon shenanigans☆65Updated 4 years ago
- ☆151Updated 4 years ago
- Resolve syscall numbers at runtime for all Windows versions.☆61Updated 6 months ago
- Windows Defender ShellCode Execution Bypass☆129Updated 5 years ago
- Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses☆41Updated 4 years ago
- PoC designed to evade userland-hooking anti-virus.☆88Updated 6 years ago
- ☆70Updated 4 months ago
- DoppelGate relies on reading ntdll on disk to grab syscall stubs, and patches these syscall stubs into desired functions to bypass Userla…☆121Updated 3 years ago
- A PE/ELF/MachO Crypter for x86 and x86_64 Based on Radare2☆139Updated 2 years ago
- Hijack Printconfig.dll to execute shellcode☆98Updated 4 years ago