rara64 / GetTrustedInstallerLinks
Make an executable run with TrustedInstaller permissions under SYSTEM account.
☆46Updated 5 years ago
Alternatives and similar repositories for GetTrustedInstaller
Users that are interested in GetTrustedInstaller are comparing it to the libraries listed below
Sorting:
- This is a simple example of DLL hijacking enabling proxy execution.☆67Updated 2 years ago
- Bypass UAC on Windows 10/11 x64 using ms-settings DelegateExecute registry key.☆81Updated 3 years ago
- Windows internals and exploitation tricks☆110Updated last month
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.☆60Updated 3 years ago
- A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows☆53Updated 4 years ago
- Bypass Malware Time Delays☆108Updated 3 years ago
- Admin2Sys it's a C++ malware to escalate privileges from Administrator account to NT AUTORITY SYSTEM☆62Updated 2 years ago
- A privilege escalation vulnerability exists in Windows due to a flaw in the implementation of the Atom Table. An attacker could exploit t…☆29Updated last year
- Analyzers for Portable Executable anomalies and other malware behavior.☆33Updated last year
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.☆36Updated 2 years ago
- code for the Proxy DLL example blog post☆62Updated 4 years ago
- C# Utilities for Windows Notification Facility☆159Updated 8 months ago
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 3 years ago
- A C implementation of the Sektor7 "A Thief" Windows privesc technique.☆69Updated 3 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆67Updated 2 years ago
- Collection of various WINAPI tricks / features used or abused by Malware☆13Updated 3 years ago
- AMSI Bypass for powershell☆29Updated 3 years ago
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆87Updated 3 weeks ago
- PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-343…☆43Updated 5 years ago
- A list of all the DLLs export in C:\windows\system32\☆221Updated 4 years ago
- Powershell implementation of a novel technique. Invoke-GPTObfuscation is a PowerShell Obfuscator that utilizes OpenAI (and other APIs) to…☆48Updated 2 years ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆86Updated 2 years ago
- Deleting Shadow Copies In Pure C++☆117Updated 3 years ago
- A .NET binary loader that bypasses AMSI☆45Updated 4 years ago
- Unfixed Windows PowerShell Filename Code Execution POC☆41Updated 2 years ago
- Execute .Net assemblies using Rundll32.exe☆113Updated 4 years ago
- Identify and exploit leaked handles for local privilege escalation.☆111Updated 2 years ago
- A C# port of the MinHook API hooking library☆56Updated 3 years ago
- Exploits Scripts and other tools that are useful during Penetration-Testing or Red Team engagement☆65Updated 3 years ago