winscripting / UAC-bypassLinks
☆231Updated 8 years ago
Alternatives and similar repositories for UAC-bypass
Users that are interested in UAC-bypass are comparing it to the libraries listed below
Sorting:
- Generates malicious LNK file payloads for data exfiltration☆420Updated 8 years ago
- Example DLL to load from Windows NetShell☆182Updated 8 years ago
- This repo will contain code snippets for blogs: Malware on Steroids written by me at https://scriptdotsh.com/index.php/category/malware-d…☆196Updated 5 years ago
- A meterpreter extension for applying hooks to avoid windows defender memory scans☆246Updated 5 years ago
- ☆476Updated 2 years ago
- The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into a…☆352Updated 9 months ago
- A modular C2 framework☆485Updated last month
- Manipulating and Abusing Windows Access Tokens.☆280Updated 4 years ago
- DLL and PowerShell script to assist with finding DLL hijacks☆337Updated 4 years ago
- Custom Metasploit post module to executing a .NET Assembly from Meterpreter session☆346Updated 5 years ago
- ** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + …☆217Updated 2 years ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆419Updated 11 months ago
- Steal a primary token and spawn cmd.exe using the stolen token☆258Updated 4 years ago
- Tool to create hidden registry keys.☆487Updated 5 years ago
- Bypass for PowerShell Constrained Language Mode☆399Updated 3 years ago
- 2018 School project - PoC of malware code obfuscation in Word macros☆153Updated 3 years ago
- ☆363Updated 4 years ago
- Bypass AMSI by patching AmsiScanBuffer☆271Updated 4 years ago
- PoC of a VBA macro spawning a process with a spoofed parent and command line.☆381Updated 5 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆231Updated 2 years ago
- ☆261Updated 2 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆812Updated 5 years ago
- Proof of concept for abusing SeLoadDriverPrivilege (Privilege Escalation in Windows)☆149Updated 7 years ago
- ☆255Updated 6 years ago
- Malicious Shortcut(.lnk) Generator☆198Updated 6 years ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.☆517Updated 2 years ago
- Tools for discovery and abuse of COM hijacks☆325Updated 5 years ago
- This is a standalone exploit for a vulnerable feature in Capcom.sys☆310Updated 2 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆331Updated 5 years ago
- A .NET Framework 4.0 Windows Agent☆498Updated this week