shubham0d / UAC-bypass-using-dll-injection
A small project to bypass UAC in windows 10/8/7 using dll injection technique
☆73Updated 4 years ago
Alternatives and similar repositories for UAC-bypass-using-dll-injection:
Users that are interested in UAC-bypass-using-dll-injection are comparing it to the libraries listed below
- Collection of CobaltStrike beacon object files☆102Updated 3 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123Updated 3 years ago
- A fake AMSI Provider which can be used for persistence.☆148Updated 3 years ago
- Proof of concept Beacon Object File (BOF) that attempts to detect userland hooks in place by AV/EDR☆99Updated 3 years ago
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆103Updated 2 years ago
- ☆88Updated 2 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆92Updated 3 years ago
- Convert shellcode generated using pe_2_shellcode to cdb format.☆96Updated 3 years ago
- Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2☆182Updated 2 years ago
- UI for creating LNKs☆102Updated 3 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- DLL Hijack Search Order Enumeration BOF☆147Updated 3 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆117Updated 3 years ago
- ☆69Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆141Updated 3 years ago
- C++ WinRM API via Reflective DLL☆142Updated 3 years ago
- Koppeling x Metatwin x LazySign☆209Updated 3 years ago
- Rewrote HellsGate in C# for fun and learning☆87Updated 3 years ago
- A basic meterpreter protocol stager using the libpeconv library by hasherezade for reflective loading☆83Updated 2 years ago
- Mochi is a proof-of-concept C++ loader that leverages the ChaiScript embedded scripting language to execute code.☆99Updated 3 years ago
- BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs☆178Updated 3 years ago
- Simple EDR implementation to demonstrate bypass☆171Updated 4 years ago
- ☆142Updated 2 years ago
- Overwrite a process's recovery callback and execute with WER☆103Updated 2 years ago
- Example code for using named pipe output with beacon ReflectiveDLLs☆113Updated 4 years ago
- ☆55Updated 3 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆102Updated 2 years ago
- Load .net assemblies from memory while having them appear to be loaded from an on-disk location.☆166Updated 3 years ago
- Weaponizing for privileged file writes bugs with PrintNotify Service☆134Updated 2 years ago
- C# version of MDSec's ParallelSyscalls☆140Updated 3 years ago