Alternatives and similar repositories for slui-file-handler-hijack-privilege-escalation:

Users that are interested in slui-file-handler-hijack-privilege-escalation are comparing it to the libraries listed below

• slyd0g / SK8RAT
  C++ implant that interfaces with a SK8PARK server
  ☆49Updated 3 years ago
• w4fz5uck5 / LonelyALPC-BypassUAC
  Lonely x64 binary to Bypass Win10 UAC utilizing ALPC method with [command line]
  ☆32Updated last year
• JohnWoodman / stealthInjector
  Injects shellcode into remote processes using direct syscalls
  ☆77Updated 4 years ago
• DamonMohammadbagher / Videos-BypassingAVsByCSharp
  Video files for eBook: "Bypassing AVs by C#.NET Programming"
  ☆41Updated last year
• mdsecactivebreach / Browser-ExternalC2
  External C2 Using IE COM Objects
  ☆99Updated 6 years ago
• rxwx / cs-rdll-ipc-example
  Example code for using named pipe output with beacon ReflectiveDLLs
  ☆115Updated 4 years ago
• itm4n / CDPSvcDllHijacking
  Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM
  ☆115Updated 5 years ago
• hvqzao / foolavc
  foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV
  ☆112Updated 3 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆74Updated 4 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆96Updated 5 years ago
• hoangprod / DanSpecial
  Weaponizing Gigabyte driver for priv escalation and bypass PPL
  ☆68Updated 5 years ago
• NtRaiseHardError / AntiHook
  PoC designed to evade userland-hooking anti-virus.
  ☆88Updated 5 years ago
• panagioto / SyscallHide
  Create a Run registry key with direct system calls. Inspired by @Cneelis's Dumpert and SharpHide.
  ☆74Updated 5 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆41Updated 4 years ago
• tomcarver16 / BOF-DLL-Inject
  Manual Map DLL injection implemented with Cobalt Strike's Beacon Object Files.
  ☆150Updated 4 years ago
• 3gstudent / Code-Execution-and-Process-Injection
  Powershell to CodeExecution and ProcessInjection
  ☆64Updated 7 years ago
• 3gstudent / HiddenNtRegistry
  Use NT Native Registry API to create a registry that normal user can not query.
  ☆90Updated 7 years ago
• CptGibbon / Windows-Process-Injection
  Some simple process injection techniques targeting the Windows platform
  ☆32Updated 5 years ago
• N4kedTurtle / HellsGatePoC
  ☆50Updated 4 years ago
• Neosama / Reverse-SOCKS5
  Server/Client SOCKS5 (RFC 1928) in Reverse mode on Windows
  ☆35Updated 6 years ago
• ewilded / PPID_spoof
  An example of how to spawn a process with a spoofed parent PID (Visual C++)
  ☆27Updated 6 years ago
• RedLectroid / APIunhooker
  C++ function that will automagically unhook a specified Windows API
  ☆62Updated 4 years ago
• TheWover / EasyNet
  Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…
  ☆91Updated 5 years ago
• joren485 / HollowProcess
  Hollow Process / Dynamic Forking / RunPE injection technique implemented in Python
  ☆53Updated 3 years ago
• apt69 / RibeyeSpecial
  medium-rare
  ☆28Updated 5 years ago
• 0x25bit / hackingLibrary
  ‪APT,‬ ‪Cyber warfare,‬ ‪Penetration testing,‬ ‪Zero-day,Exploiting,‬Fuzzing,Privilege-Escalation,browser-security‪,Spyware,Malwres evade…
  ☆35Updated 6 years ago
• jackullrich / universal-syscall-64
  Resolve syscall numbers at runtime for all Windows versions.
  ☆61Updated 4 months ago
• bats3c / DefensiveInjector
  Shellcode injector using direct syscalls
  ☆119Updated 4 years ago
• checkymander / CoreSploit
  Initial Commit of Coresploit
  ☆56Updated 3 years ago
• sisoma2 / ShellcodeLoader
  Small tool to load shellcodes or PEs to analyze them
  ☆81Updated 6 years ago