sailay1996 / UAC_Bypass_In_The_Wild
Windows 10 UAC bypass for all executable files which are autoelevate true .
☆635Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for UAC_Bypass_In_The_Wild
- Windows - Weaponizing privileged file writes with the Update Session Orchestrator service☆378Updated 4 years ago
- Adaptive DLL hijacking / dynamic export forwarding☆726Updated 4 years ago
- Also known by Microsoft as Knifecoat☆1,114Updated last year
- Process Injection☆752Updated 3 years ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,227Updated 4 months ago
- The exploit samples database is a repository for **RCE** (remote code execution) exploits and Proof-of-Concepts for **WINDOWS**, the samp…☆740Updated 11 months ago
- Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322☆350Updated 5 years ago
- Public work for CVE-2019-0708☆289Updated 5 years ago
- CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege☆339Updated 2 years ago
- A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from …☆876Updated 3 years ago
- collect for learning cases☆567Updated 5 months ago
- Evade sysmon and windows event logging☆611Updated 4 years ago
- wsb-detect enables you to detect if you are running in Windows Sandbox ("WSB")☆353Updated last year
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,402Updated last year
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆790Updated 2 years ago
- Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".☆384Updated 4 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆790Updated 4 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆1,093Updated last year
- A tool to elevate privilege with Windows Tokens☆1,023Updated last year
- My implementation of enSilo's Process Doppelganging (PE injection technique)☆580Updated 2 years ago
- CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost☆1,304Updated 3 years ago
- Tool to create hidden registry keys.☆466Updated 5 years ago
- A tool that detects the privilege escalation vulnerabilities caused by misconfigurations and missing updates in the Windows operating sys…☆489Updated 4 years ago
- Persisting in the Windows registry "invisibly"☆339Updated 6 years ago
- C# Script used for Red Team☆716Updated 3 years ago
- LSASS memory dumper using direct system calls and API unhooking.☆1,491Updated 3 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆899Updated last year
- CVE-2020-0796 Remote Code Execution POC☆538Updated 4 years ago