Alternatives and similar repositories for UUB

Users that are interested in UUB are comparing it to the libraries listed below

• aaaddress1 / masqueradeCmdline
  A PoC to demo modifying cmdline of the child process dynamically. It might be useful against process log tracing, AV or EDR.
  ☆39Updated 4 years ago
• AzAgarampur / byeintegrity4-uac
  Bypass UAC by abusing the Windows Defender Firewall Control Panel, environment variables, and shell protocol handlers
  ☆18Updated 3 years ago
• ewilded / PPID_spoof
  An example of how to spawn a process with a spoofed parent PID (Visual C++)
  ☆27Updated 6 years ago
• decay88 / Tengri_Shellcode_Loader
  Encrypted Shellcode Loader Generator
  ☆22Updated 6 years ago
• irsl / CVE-2020-0728
  Proof of Concept code for CVE-2020-0728
  ☆46Updated 5 years ago
• DoubleLabyrinth / ProcessHollowing
  ☆36Updated 6 years ago
• aaaddress1 / dnLauncher
  ☆36Updated 3 years ago
• sailay1996 / FileWrite2system
  File Write Weapon for Privilege Escalation To get SYSTEM
  ☆18Updated 4 years ago
• daem0nc0re / HEVD-CSharpKernelPwn
  CSharp Writeups for HackSys Extreme Vulnerable Driver
  ☆43Updated 3 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆35Updated 3 years ago
• hoangprod / COMHijacker
  Persistent through COM Hijacking
  ☆21Updated 6 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• rasta-mouse / AsyncSockets
  Example of async client/server sockets in .NET 5
  ☆17Updated 3 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆24Updated 5 years ago
• rvrsh3ll / PELoader
  Load PE via XML Attribute
  ☆31Updated 5 years ago
• m0n0ph1 / shellcode-2
  x86 and x86-64 shellcodes for Windows, Mac OSX, Linux, BSD and Solaris
  ☆15Updated 7 years ago
• N4kedTurtle / HellsGatePoC
  ☆50Updated 4 years ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆93Updated 3 years ago
• PorLaCola25 / NtCreateUserProcess
  ☆12Updated 4 years ago
• fashionproof / CheckSafeBoot
  I used this to see if an EDR is running in Safe Mode
  ☆36Updated 4 years ago
• d35ha / ShellInjector
  Execute an arbitrary command within the context of another process
  ☆20Updated 5 years ago
• 0r13lc0ch4v1 / HideFromAMSI
  Bypass AMSI and Executing PowerShell scripts from C# - using CyberArk's method to bypass AMSI
  ☆31Updated 5 years ago
• a7t0fwa7 / windows-ps-callbacks-experiments
  Files for http://deniable.org/windows/windows-callbacks
  ☆25Updated 4 years ago
• perturbed-platypus / UEFIWriteCSharp
  ☆41Updated 5 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 6 years ago
• sevagas / MagicLib
  Non organized Cpp code files I used for my research on Windows
  ☆23Updated 4 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• RedyOpsResearchLabs / -CVE-2020-8103-Bitdefender-Antivirus-Free-EoP
  CVE-2020-8103 Link Resolution Privilege Escalation Vulnerability in Bitdefender Antivirus Free
  ☆15Updated 4 years ago
• manicstreetcoders / AppInitGlobalHooks-Mimikatz
  Hide Mimikatz From Process Lists
  ☆17Updated 9 years ago
• FuzzySecurity / SharpSploit
  SharpSploit is a .NET post-exploitation library written in C#
  ☆16Updated 5 years ago