sailay1996 / UAC_Bypass_In_The_Wild

Related projects ⓘ

Alternatives and complementary repositories for UAC_Bypass_In_The_Wild

• rasta-mouse / TikiTorch
  Process Injection
  ☆750Updated 3 years ago
• itm4n / UsoDllLoader
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆378Updated 4 years ago
• FuzzySecurity / Sharp-Suite
  Also known by Microsoft as Knifecoat
  ☆1,112Updated last year
• monoxgas / Koppeling
  Adaptive DLL hijacking / dynamic export forwarding
  ☆724Updated 4 years ago
• Kevin-Robertson / InveighZero
  .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
  ☆791Updated 2 years ago
• 0xbadjuju / Tokenvator
  A tool to elevate privilege with Windows Tokens
  ☆1,022Updated last year
• bats3c / Ghost-In-The-Logs
  Evade sysmon and windows event logging
  ☆611Updated 4 years ago
• apt69 / COMahawk
  Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
  ☆349Updated 4 years ago
• L3cr0f / DccwBypassUAC
  Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".
  ☆384Updated 4 years ago
• 0x09AL / RdpThief
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆1,220Updated 3 months ago
• padovah4ck / CVE-2020-0683
  CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege
  ☆339Updated 2 years ago
• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆289Updated 4 years ago
• itm4n / VBA-RunPE
  A VBA implementation of the RunPE technique or how to bypass application whitelisting.
  ☆789Updated 4 years ago
• Mr-Un1k0d3r / SCShell
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,399Updated last year
• med0x2e / GadgetToJScript
  A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …
  ☆868Updated 3 years ago
• sailay1996 / awesome_windows_logical_bugs
  collect for learning cases
  ☆565Updated 4 months ago
• LloydLabs / wsb-detect
  wsb-detect enables you to detect if you are running in Windows Sandbox ("WSB")
  ☆353Updated last year
• ewhitehats / InvisiblePersistence
  Persisting in the Windows registry "invisibly"
  ☆338Updated 6 years ago
• outflanknl / SharpHide
  Tool to create hidden registry keys.
  ☆465Updated 5 years ago
• outflanknl / Dumpert
  LSASS memory dumper using direct system calls and API unhooking.
  ☆1,485Updated 3 years ago
• Mr-Un1k0d3r / RedTeamCSharpScripts
  C# Script used for Red Team
  ☆715Updated 2 years ago
• DamonMohammadbagher / eBook-BypassingAVsByCSharp
  eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
  ☆465Updated last year
• b4rtik / RedPeanut
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆329Updated last year
• GhostPack / SafetyKatz
  SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader
  ☆1,219Updated 5 years ago
• CCob / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,112Updated 3 years ago
• jxy-s / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆1,092Updated last year
• Hackplayers / Salsa-tools
  Salsa Tools - ShellReverse TCP/UDP/ICMP/DNS/SSL/BINDTCP/Shellcode/SILENTTRINITY and AV bypass, AMSI patched
  ☆576Updated 4 years ago
• christophetd / spoofing-office-macro
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆375Updated 4 years ago
• smgorelik / Windows-RCE-exploits
  The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samp…
  ☆739Updated 10 months ago