Alternatives and similar repositories for UAC-bypass

Users that are interested in UAC-bypass are comparing it to the libraries listed below

• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆377Updated 2 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆119Updated last year
• gh0x0st / Invoke-PSObfuscation
  An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
  ☆272Updated 3 years ago
• senzee1984 / micr0_shell
  micr0shell is a Python script that dynamically generates Windows X64 PIC Null-Free reverse shell shellcode.
  ☆194Updated last year
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆147Updated 2 years ago
• CsEnox / EventViewer-UACBypass
  🍊 Orange Tsai EventViewer RCE
  ☆189Updated 3 years ago
• WesleyWong420 / RedTeamOps-Havoc-101
  Materials for the workshop "Red Team Ops: Havoc 101"
  ☆382Updated 10 months ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆99Updated 3 years ago
• NUL0x4C / HellShell
  transform your payload into ipv4/ipv6/mac arrays
  ☆188Updated 2 years ago
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆219Updated 2 weeks ago
• gh0x0st / Get-ReverseShell
  A solution to create obfuscated reverse shells for PowerShell.
  ☆78Updated 3 years ago
• sinfulz / JustEvadeBro
  JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
  ☆310Updated 11 months ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆380Updated last year
• mertdas / PrivKit
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆426Updated last year
• icyguider / LightsOut
  Generate an obfuscated DLL that will disable AMSI & ETW
  ☆328Updated last year
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆205Updated 2 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆73Updated 3 years ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆292Updated 3 months ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆79Updated 3 years ago
• Adkali / PowerJoker
  PowerJoker is a Python program which generate a Dynamic PowerShell Reverse-Shell Generator; Unique Payloads with different results on Eac…
  ☆56Updated 7 months ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆130Updated last year
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆41Updated 2 years ago
• S1lkys / SharpKiller
  Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
  ☆354Updated 11 months ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆171Updated 2 years ago
• mandiant / msi-search
  ☆283Updated 2 years ago
• HavocFramework / Modules
  Modules used by the Havoc Framework
  ☆241Updated last year
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆119Updated 3 years ago
• RedefiningReality / Cobalt-Strike
  Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
  ☆303Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆158Updated last month
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆118Updated 2 years ago