Alternatives and similar repositories for UAC-bypass

Users that are interested in UAC-bypass are comparing it to the libraries listed below

• Plazmaz / LNKUp
  Generates malicious LNK file payloads for data exfiltration
  ☆420Updated 8 years ago
• outflanknl / NetshHelperBeacon
  Example DLL to load from Windows NetShell
  ☆182Updated 8 years ago
• paranoidninja / 0xdarkvortex-MalwareDevelopment
  This repo will contain code snippets for blogs: Malware on Steroids written by me at https://scriptdotsh.com/index.php/category/malware-d…
  ☆196Updated 5 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆246Updated 5 years ago
• mandiant / DueDLLigence
  ☆476Updated 2 years ago
• threatexpress / metatwin
  The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…
  ☆352Updated 9 months ago
• p3nt4 / Nuages
  A modular C2 framework
  ☆485Updated last month
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆280Updated 4 years ago
• slyd0g / DLLHijackTest
  DLL and PowerShell script to assist with finding DLL hijacks
  ☆337Updated 4 years ago
• b4rtik / metasploit-execute-assembly
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆346Updated 5 years ago
• Kudaes / LOLBITS
  ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …
  ☆217Updated 2 years ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆419Updated 11 months ago
• slyd0g / PrimaryTokenTheft
  Steal a primary token and spawn cmd.exe using the stolen token
  ☆258Updated 4 years ago
• outflanknl / SharpHide
  Tool to create hidden registry keys.
  ☆487Updated 5 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆399Updated 3 years ago
• bonnetn / vba-obfuscator
  2018 School project - PoC of malware code obfuscation in Word macros
  ☆153Updated 3 years ago
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆363Updated 4 years ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆271Updated 4 years ago
• christophetd / spoofing-office-macro
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆381Updated 5 years ago
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆231Updated 2 years ago
• mandiant / OfficePurge
  ☆261Updated 2 years ago
• itm4n / VBA-RunPE
  A VBA implementation of the RunPE technique or how to bypass application whitelisting.
  ☆812Updated 5 years ago
• TarlogicSecurity / EoPLoadDriver
  Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)
  ☆149Updated 7 years ago
• Mr-Un1k0d3r / Windows-SignedBinary
  ☆255Updated 6 years ago
• it-gorillaz / lnk2pwn
  Malicious Shortcut(.lnk) Generator
  ☆198Updated 6 years ago
• CBHue / PyFuscation
  Obfuscate powershell scripts by replacing Function names, Variables and Parameters.
  ☆517Updated 2 years ago
• nccgroup / acCOMplice
  Tools for discovery and abuse of COM hijacks
  ☆325Updated 5 years ago
• tandasat / ExploitCapcom
  This is a standalone exploit for a vulnerable feature in Capcom.sys
  ☆310Updated 2 years ago
• ionescu007 / faxhell
  A Bind Shell Using the Fax Service and a DLL Hijack
  ☆331Updated 5 years ago
• MythicAgents / Apollo
  A .NET Framework 4.0 Windows Agent
  ☆498Updated this week