Alternatives and similar repositories for Gigabyte_ElevatePersist

Users that are interested in Gigabyte_ElevatePersist are comparing it to the libraries listed below

• Pwnd4 / DefenseEvasion

  View on GitHub
  Bypassing AV, EDR, Application Whitelisting and ASR Rules
  ☆13Apr 18, 2023Updated 2 years ago
• hackerhouse-opensource / Artillery

  View on GitHub
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆182Feb 2, 2026Updated last week
• ZeroMemoryEx / Tokenizer

  View on GitHub
  Kernel Mode Driver for Elevating Process Privileges
  ☆134Mar 23, 2023Updated 2 years ago
• hackerhouse-opensource / CompMgmtLauncher_DLL_UACBypass

  View on GitHub
  CompMgmtLauncher & Sharepoint DLL Search Order hijacking UAC/persist via OneDrive
  ☆110Feb 2, 2026Updated last week
• BeetleChunks / Obligato

  View on GitHub
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆108Sep 22, 2023Updated 2 years ago
• WKL-Sec / Winsocky

  View on GitHub
  Winsocket for Cobalt Strike.
  ☆102Jul 6, 2023Updated 2 years ago
• gavz / ExplorerPersist

  View on GitHub
  Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …
  ☆83Jan 12, 2023Updated 3 years ago
• SaadAhla / D1rkSleep

  View on GitHub
  Improved version of EKKO by @5pider that Encrypts only Image Sections
  ☆125Feb 13, 2023Updated 3 years ago
• gokupwn / shootCutMe

  View on GitHub
  ShootCutMe an .LNK file creator tool for redteamer
  ☆15Oct 2, 2024Updated last year
• Mr-xn / CVE-2023-23333

  View on GitHub
  SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates
  ☆14Jun 16, 2023Updated 2 years ago
• Unprotect-Project / FuncInEvasionTechniqueDemo

  View on GitHub
  ☆35Dec 21, 2023Updated 2 years ago
• nbs32k / inline-syscall

  View on GitHub
  Inline syscalls made for MSVC supporting x64 and WOW64
  ☆193Jul 10, 2023Updated 2 years ago
• yoryio / ShodanFavicon

  View on GitHub
  List of MurmurHash3 favicon hashes of widely used technologies by vendor to search with Shodan.
  ☆35Apr 14, 2024Updated last year
• 0xthirteen / PerfExec

  View on GitHub
  ☆80Aug 2, 2023Updated 2 years ago
• kkent030315 / CVE-2022-42046

  View on GitHub
  CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM
  ☆162Dec 24, 2022Updated 3 years ago
• baiyies / ScreenshotBOFPlus

  View on GitHub
  Take a screenshot without injection for Cobalt Strike
  ☆203Jun 7, 2023Updated 2 years ago
• YOLOP0wn / EchoDrv

  View on GitHub
  Exploitation of echo_driver.sys
  ☆170Sep 16, 2023Updated 2 years ago
• kouzhudong / HidePort

  View on GitHub
  Hide Port In Windows
  ☆42Oct 24, 2024Updated last year
• splexas / TrampHooker

  View on GitHub
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆21Oct 9, 2024Updated last year
• Mr-Cyb3rgh0st / Excel-Exploit

  View on GitHub
  MacroExploit use in excel sheet
  ☆20Jun 12, 2023Updated 2 years ago
• capt-meelo / KernelCallbackTable-Injection

  View on GitHub
  Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
  ☆141Apr 21, 2022Updated 3 years ago
• brosck / Frosty

  View on GitHub
  「🧊」Ring 3 Rootkit for Windows 10
  ☆60Dec 7, 2024Updated last year
• bluefrostsecurity / Windows-Drive-Remapping-EoP

  View on GitHub
  ☆35Nov 16, 2023Updated 2 years ago
• EgeBalci / syscall_api

  View on GitHub
  ☆38Jun 5, 2023Updated 2 years ago
• SaadAhla / DocPlz

  View on GitHub
  Documents Exfiltration project for fun and educational purposes
  ☆145Oct 10, 2023Updated 2 years ago
• hackerhouse-opensource / NoFaxGiven

  View on GitHub
  Code Execution & Persistence in NETWORK SERVICE FAX Service
  ☆34Feb 2, 2026Updated last week
• mastercodeon314 / NugetBackdoor

  View on GitHub
  A framework for backdooring Microsoft Nuget packages.
  ☆10Jan 9, 2024Updated 2 years ago
• EspressoCake / DefenderPathExclusions

  View on GitHub
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆33Nov 1, 2023Updated 2 years ago
• rasta-mouse / PPEnum

  View on GitHub
  Simple BOF to read the protection level of a process
  ☆118May 10, 2023Updated 2 years ago
• Kudaes / Fiber

  View on GitHub
  Using fibers to run in-memory code.
  ☆240Oct 19, 2023Updated 2 years ago
• florylsk / SignatureGate

  View on GitHub
  Weaponized HellsGate/SigFlip
  ☆204Jun 7, 2023Updated 2 years ago
• RWXstoned / GimmeShelter

  View on GitHub
  Situational Awareness script to identify how and where to run implants
  ☆67Dec 6, 2024Updated last year
• iilegacyyii / ThreadlessInject-BOF

  View on GitHub
  BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…
  ☆394Jan 9, 2024Updated 2 years ago
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397

  View on GitHub
  ☆22Jul 15, 2023Updated 2 years ago
• netbiosX / GhostLoader

  View on GitHub
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆53May 21, 2020Updated 5 years ago
• hackerhouse-opensource / telnetclientpoc

  View on GitHub
  Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit
  ☆62Feb 2, 2026Updated last week
• netero1010 / RDPHijack-BOF

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.
  ☆312Jul 8, 2022Updated 3 years ago
• deepinstinct / ContainYourself

  View on GitHub
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆319Aug 31, 2023Updated 2 years ago
• QueenSquishy / plague

  View on GitHub
  Default Detections for EDR
  ☆97Feb 20, 2024Updated last year