UltimateAppLockerByPassList

AppLocker bypass list

A repository documenting common techniques to bypass AppLocker security policies

The goal of this repository is to document the most common techniques to bypass AppLocker.

GitHub

2k stars
118 watching
353 forks
Language: PowerShell
last commit: over 1 year ago
Linked from 1 awesome list

applockerawlblueteambypasspurpleteamredteamrules

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
bohops/ultimatewdacbypasslist A centralized resource for bypassing Windows Device Guard Application Whitelisting (WDAC) policies. 489
padovah4ck/psbypassclm Bypasses AppLocker restrictions in PowerShell to enable more advanced language functionality 380
tyranid/deviceguardbypasses Provides bypasses and tools to analyze Windows 10's Device Guard restrictions 133
blackberry/falco-bypasses Research on bypassing default security rules for Kubernetes using various techniques 79
encodegroup/uac-silentclean A technique to bypass Windows UAC security restrictions using a DLL planting method for executing malicious code in high integrity processes. 190
isecpartners/android-ssl-trustkiller Bypasses SSL certificate pinning to allow intercepting encrypted traffic from many applications on Android devices. 710
ac-pm/sslunpinning_xposed Allows bypassing of SSL certificate validation in Android apps to intercept traffic 792
pizz33/gobypassav-shellcode A tool for creating shellcode bypasses of antivirus software 823
isecpartners/android-killpermandsigchecks A tool to bypass Android's signature and permission checks for Inter-Process Communications (IPC) using Cydia Substrate. 83
davidbuchanan314/libleakmydata A tool to bypass SSL certificate verification in various web applications 173
netero1010/trustedpath-uacbypass-bof Tools and techniques to bypass Windows UAC restrictions on executable files by utilizing DCOM objects 119
dodobrands/webauthn.net An implementation of the WebAuthn standard for .NET applications 191
jumpseclabs/rook Automates password cracking on AWS using GPU-based instances. 82
mgeeky/stracciatella A tool to bypass security features in PowerShell and create an unmanaged environment for executing malicious code 509
bfilar/malware_rl Enabling research into malware bypass using reinforcement learning environments 102