pulpocaminante / gui-pwnLinks
GUI-based UAC bypass
☆28Updated 7 months ago
Alternatives and similar repositories for gui-pwn
Users that are interested in gui-pwn are comparing it to the libraries listed below
Sorting:
- Demoting PPL anti-malware services to less than a guest user☆63Updated 7 months ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nim☆59Updated 9 months ago
- ☆47Updated 2 years ago
- ☆58Updated 11 months ago
- ☆37Updated 5 months ago
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆20Updated 5 months ago
- ☆60Updated last year
- A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.☆87Updated 8 months ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆21Updated 7 months ago
- Sniffing files generator☆59Updated 7 months ago
- Proxy function calls through the thread pool with ease☆29Updated 7 months ago
- Tool designed to simplify the generation of proxy DLLs while addressing common conflicts related to windows.h☆39Updated 11 months ago
- Creation and removal of Defender path exclusions and exceptions in C#.☆31Updated last year
- EvtPsst☆55Updated last year
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆78Updated last year
- Modern PIC implant for Windows (64 & 32 bit)☆104Updated 2 months ago
- Just another ntdll unhooking using Parun's Fart technique☆75Updated 2 years ago
- 「⚙️」Detect which native Windows API's (NtAPI) are being hooked☆39Updated 9 months ago
- POC of GITHUB simple C2 in rust☆52Updated 2 months ago
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆68Updated last month
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆44Updated last year
- FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…☆30Updated 5 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 6 months ago
- A simple website to act as a store for havoc modules and extensions☆28Updated 8 months ago
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆47Updated 2 months ago
- Unix Process hollowing in rust☆22Updated 9 months ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- Docker container for running CobaltStrike 4.7 and above☆22Updated 6 months ago
- Just another Process Injection using Process Hollowing technique.☆18Updated 2 years ago
- A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…☆95Updated 11 months ago