Defeating Windows User Account Control
☆7,377Feb 17, 2026Updated last week
Alternatives and similar repositories for UACME
Users that are interested in UACME are comparing it to the libraries listed below
Sorting:
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,462Jul 8, 2025Updated 7 months ago
- Trying to tame the three-headed dog.☆4,893Nov 14, 2025Updated 3 months ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆12,889Aug 17, 2020Updated 5 years ago
- Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode☆2,503Nov 15, 2023Updated 2 years ago
- Converts PE into a shellcode☆2,745Aug 30, 2025Updated 6 months ago
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…☆4,479Jan 10, 2025Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆15,493Updated this week
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,913Nov 19, 2025Updated 3 months ago
- PowerShell Obfuscator☆4,205Aug 10, 2023Updated 2 years ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,759Apr 25, 2024Updated last year
- windows-kernel-exploits Windows平台提权漏洞集合☆8,596Jun 11, 2021Updated 4 years ago
- Windows Exploit Suggester - Next Generation☆4,766Updated this week
- Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…☆3,230Sep 3, 2022Updated 3 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,620Jul 18, 2024Updated last year
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆2,732Dec 18, 2021Updated 4 years ago
- Adversary Emulation Framework☆10,717Feb 23, 2026Updated last week
- AV/EDR evasion via direct system calls.☆1,990Jan 1, 2023Updated 3 years ago
- Privilege Escalation Enumeration Script for Windows☆3,697Jan 30, 2026Updated last month
- Identifies the bytes that Microsoft Defender flags on.☆2,582Dec 31, 2025Updated 2 months ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,577Jan 5, 2021Updated 5 years ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,173May 11, 2023Updated 2 years ago
- A little tool to play with Windows security☆21,281May 11, 2025Updated 9 months ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,812Sep 4, 2024Updated last year
- My musings with PowerShell☆2,703Nov 19, 2021Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,606Jul 10, 2023Updated 2 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,874Aug 18, 2023Updated 2 years ago
- Six Degrees of Domain Admin☆10,540Aug 1, 2025Updated 7 months ago
- The swiss army knife of LSASS dumping☆2,072Sep 17, 2024Updated last year
- Open-Source Shellcode & PE Packer☆2,069Feb 3, 2024Updated 2 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,818Jan 19, 2020Updated 6 years ago
- Abusing impersonation privileges through the "Printer Bug"☆2,187Sep 10, 2020Updated 5 years ago
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆6,861Feb 1, 2026Updated last month
- AV/EDR evasion via direct system calls.☆1,793Sep 3, 2022Updated 3 years ago
- Mimikatz implementation in pure Python☆3,249Jan 2, 2026Updated 2 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆8,336Dec 6, 2025Updated 2 months ago
- Run PowerShell with rundll32. Bypass software restrictions.☆1,822Mar 17, 2021Updated 4 years ago
- A tool to perform Kerberos pre-auth bruteforcing☆3,255Aug 20, 2024Updated last year
- Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…☆3,900Jan 24, 2024Updated 2 years ago