Alternatives and similar repositories for UAC-bypass

Users that are interested in UAC-bypass are comparing it to the libraries listed below

• paranoidninja / 0xdarkvortex-MalwareDevelopment
  This repo will contain code snippets for blogs: Malware on Steroids written by me at https://scriptdotsh.com/index.php/category/malware-d…
  ☆199Updated 5 years ago
• Plazmaz / LNKUp
  Generates malicious LNK file payloads for data exfiltration
  ☆423Updated 8 years ago
• outflanknl / NetshHelperBeacon
  Example DLL to load from Windows NetShell
  ☆182Updated 9 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆400Updated 3 years ago
• threatexpress / metatwin
  The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…
  ☆354Updated 10 months ago
• mandiant / DueDLLigence
  ☆479Updated 2 years ago
• FSecureLABS / Ninjasploit
  A meterpreter extension for applying hooks to avoid windows defender memory scans
  ☆247Updated 5 years ago
• b4rtik / metasploit-execute-assembly
  Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
  ☆346Updated 5 years ago
• outflanknl / SharpHide
  Tool to create hidden registry keys.
  ☆488Updated 5 years ago
• PwnDexter / Invoke-EDRChecker
  Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…
  ☆270Updated 2 years ago
• it-gorillaz / lnk2pwn
  Malicious Shortcut(.lnk) Generator
  ☆197Updated 6 years ago
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆233Updated 2 years ago
• rasta-mouse / AmsiScanBufferBypass
  Bypass AMSI by patching AmsiScanBuffer
  ☆273Updated 4 years ago
• Cybereason / siofra
  ☆494Updated 8 years ago
• TsukiCTF / Lovely-Potato
  Automating juicy potato local privilege escalation exploit for penetration testers
  ☆146Updated 4 years ago
• Flangvik / AMSI.fail
  C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.
  ☆421Updated last year
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆363Updated 4 years ago
• nccgroup / acCOMplice
  Tools for discovery and abuse of COM hijacks
  ☆330Updated 6 years ago
• juliourena / plaintext
  ☆153Updated last month
• S1ckB0y1337 / TokenPlayer
  Manipulating and Abusing Windows Access Tokens.
  ☆283Updated 4 years ago
• slyd0g / PrimaryTokenTheft
  Steal a primary token and spawn cmd.exe using the stolen token
  ☆258Updated 4 years ago
• Kudaes / LOLBITS
  ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …
  ☆217Updated 2 years ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆236Updated 3 years ago
• tandasat / ExploitCapcom
  This is a standalone exploit for a vulnerable feature in Capcom.sys
  ☆313Updated 3 years ago
• kavika13 / RemCom
  Remote Command Executor: A OSS replacement for PsExec and RunAs - or Telnet without having to install a server. Take your pick :)
  ☆359Updated 7 years ago
• Mr-Un1k0d3r / Windows-SignedBinary
  ☆257Updated 6 years ago
• EmpireProject / PSInject
  Inject PowerShell into any process
  ☆239Updated 6 years ago
• xforcered / InvisibilityCloak
  Proof-of-concept obfuscation toolkit for C# post-exploitation tools
  ☆432Updated 3 years ago
• p3nt4 / Nuages
  A modular C2 framework
  ☆490Updated last month
• Cn33liz / MSBuildShell
  MSBuildShell, a Powershell Host running within MSBuild.exe
  ☆292Updated 6 years ago