Alternatives and similar repositories for UAC_Bypass_In_The_Wild

Users that are interested in UAC_Bypass_In_The_Wild are comparing it to the libraries listed below

• sailay1996 / UAC_bypass_windows_store

  View on GitHub
  Windows 10 LPE (UAC Bypass) in Windows Store (WSReset.exe)
  ☆267Dec 19, 2019Updated 6 years ago
• yusufqk / SystemToken

  View on GitHub
  Steal privileged token to obtain SYSTEM shell
  ☆252Jul 14, 2020Updated 5 years ago
• padovah4ck / CVE-2020-0683

  View on GitHub
  CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege
  ☆338Dec 23, 2021Updated 4 years ago
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,594Jul 10, 2023Updated 2 years ago
• apt69 / COMahawk

  View on GitHub
  Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
  ☆350Nov 14, 2019Updated 6 years ago
• ZHacker13 / ReverseTCPShell

  View on GitHub
  PowerShell ReverseTCP Shell - Framework
  ☆1,064Sep 18, 2022Updated 3 years ago
• b4rtik / RedPeanut

  View on GitHub
  RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
  ☆330Jul 7, 2023Updated 2 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆328Mar 26, 2019Updated 6 years ago
• 0x09AL / RdpThief

  View on GitHub
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆1,422Jul 20, 2024Updated last year
• RedCursorSecurityConsulting / CVE-2020-0668

  View on GitHub
  Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
  ☆229Feb 20, 2020Updated 5 years ago
• jfmaes / TrustJack

  View on GitHub
  Yet another PoC for https://www.wietzebeukema.nl/blog/hijacking-dlls-in-windows
  ☆143Jul 11, 2020Updated 5 years ago
• outflanknl / SharpHide

  View on GitHub
  Tool to create hidden registry keys.
  ☆491Oct 23, 2019Updated 6 years ago
• outflanknl / Dumpert

  View on GitHub
  LSASS memory dumper using direct system calls and API unhooking.
  ☆1,577Jan 5, 2021Updated 5 years ago
• itm4n / CDPSvcDllHijacking

  View on GitHub
  Windows 10 CDPSvc DLL Hijacking - From LOCAL SERVICE to SYSTEM
  ☆118Dec 12, 2019Updated 6 years ago
• itm4n / UsoDllLoader

  View on GitHub
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆402Jun 6, 2020Updated 5 years ago
• b4rtik / ATPMiniDump

  View on GitHub
  Evading WinDefender ATP credential-theft
  ☆256Dec 2, 2019Updated 6 years ago
• infosecn1nja / MaliciousMacroMSBuild

  View on GitHub
  Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.
  ☆513Aug 6, 2019Updated 6 years ago
• bats3c / Ghost-In-The-Logs

  View on GitHub
  Evade sysmon and windows event logging
  ☆625Apr 8, 2020Updated 5 years ago
• antonioCoco / Mapping-Injection

  View on GitHub
  Just another Windows Process Injection
  ☆408Aug 7, 2020Updated 5 years ago
• FuzzySecurity / Sharp-Suite

  View on GitHub
  Also known by Microsoft as Knifecoat
  ☆1,151Dec 22, 2022Updated 3 years ago
• offsecginger / AES-PowerShellCode

  View on GitHub
  Standalone version of my AES Powershell payload for Cobalt Strike.
  ☆111Dec 27, 2019Updated 6 years ago
• infosecn1nja / SharpDoor

  View on GitHub
  SharpDoor is alternative RDPWrap written in C# to allowed multiple RDP (Remote Desktop) sessions by patching termsrv.dll file.
  ☆313Sep 30, 2019Updated 6 years ago
• christophetd / spoofing-office-macro

  View on GitHub
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆380Apr 28, 2020Updated 5 years ago
• rasta-mouse / TikiTorch

  View on GitHub
  Process Injection
  ☆766Oct 24, 2021Updated 4 years ago
• itm4n / VBA-RunPE

  View on GitHub
  A VBA implementation of the RunPE technique or how to bypass application whitelisting.
  ☆812Dec 17, 2019Updated 6 years ago
• 0xbadjuju / Tokenvator

  View on GitHub
  A tool to elevate privilege with Windows Tokens
  ☆1,055Oct 6, 2023Updated 2 years ago
• anthemtotheego / SharpCradle

  View on GitHub
  ☆281Dec 30, 2020Updated 5 years ago
• Mr-Un1k0d3r / RedTeamCSharpScripts

  View on GitHub
  C# Script used for Red Team
  ☆724Nov 16, 2021Updated 4 years ago
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,956Aug 21, 2024Updated last year
• blackarrowsec / mssqlproxy

  View on GitHub
  mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…
  ☆768Feb 16, 2021Updated 5 years ago
• Mr-B0b / SpaceRunner

  View on GitHub
  This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes thr…
  ☆196Jul 26, 2020Updated 5 years ago
• jthuraisamy / SysWhispers

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,988Jan 1, 2023Updated 3 years ago
• d35ha / CallObfuscator

  View on GitHub
  Obfuscate specific windows apis with different apis
  ☆1,021Feb 21, 2021Updated 4 years ago
• 0x09AL / IIS-Raid

  View on GitHub
  A native backdoor module for Microsoft IIS (Internet Information Services)
  ☆559Jul 3, 2020Updated 5 years ago
• Mr-Un1k0d3r / PoisonHandler

  View on GitHub
  lateral movement techniques that can be used during red team exercises
  ☆273Jan 13, 2020Updated 6 years ago
• b4rtik / SharpMiniDump

  View on GitHub
  Create a minidump of the LSASS process from memory
  ☆261Nov 2, 2022Updated 3 years ago
• 0vercl0k / CVE-2019-11708

  View on GitHub
  Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.
  ☆623Jun 13, 2020Updated 5 years ago
• rootm0s / WinPwnage

  View on GitHub
  UAC bypass, Elevate, Persistence methods
  ☆2,736Feb 13, 2023Updated 3 years ago
• b4rtik / metasploit-execute-assembly

  View on GitHub
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆348Jul 21, 2020Updated 5 years ago