0x6rss/CVE-2025-24071_PoC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0x6rss/CVE-2025-24071_PoC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0x6rss/CVE-2025-24071_PoC)

Close

0x6rss / CVE-2025-24071_PoCView on GitHubMore

• External links
• Readme badge

CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File

☆396Mar 20, 2025Updated 11 months ago

Alternatives and similar repositories for CVE-2025-24071_PoC

Users that are interested in CVE-2025-24071_PoC are comparing it to the libraries listed below

• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆198Mar 28, 2025Updated 11 months ago
• decoder-it / KrbRelay-SMBServer

  View on GitHub
  ☆234Oct 8, 2024Updated last year
• MzHmO / LeakedWallpaper

  View on GitHub
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆260Aug 13, 2024Updated last year
• DarkSpaceSecurity / SSH-Stealer

  View on GitHub
  Smart keylogging capability to steal SSH Credentials including password & Private Key
  ☆152Mar 26, 2025Updated 11 months ago
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆267Apr 8, 2025Updated 11 months ago
• MzHmO / Exploit-Street

  View on GitHub
  Complete list of LPE exploits for Windows (starting from 2023)
  ☆911Feb 20, 2026Updated 2 weeks ago
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year
• MrAle98 / CVE-2024-49138-POC

  View on GitHub
  POC exploit for CVE-2024-49138
  ☆267Feb 14, 2025Updated last year
• SafeBreach-Labs / CVE-2024-49113

  View on GitHub
  LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
  ☆516Jan 2, 2025Updated last year
• Azr43lKn1ght / Rusty-PE-Packer

  View on GitHub
  A robust Windows Process Executable Packer and Launcher implementation written in Rust for Windows x64 systems.
  ☆43Jan 9, 2025Updated last year
• ynwarcs / CVE-2025-21298

  View on GitHub
  Proof of concept & details for CVE-2025-21298
  ☆195Jan 20, 2025Updated last year
• Thunter-HackTeam / EvilentCoerce

  View on GitHub
  ☆160May 5, 2025Updated 10 months ago
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Sep 25, 2024Updated last year
• ColeHouston / Sunder

  View on GitHub
  Windows rootkit designed to work with BYOVD exploits
  ☆216Jan 18, 2025Updated last year
• FOLKS-iwd / CVE-2025-24071-msfvenom

  View on GitHub
  Metasploit module for CVE-2025-24071 - Windows NTLM Hash Leak via .library-ms
  ☆26Mar 18, 2025Updated 11 months ago
• dhmosfunk / 7-Zip-CVE-2025-0411-POC

  View on GitHub
  This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.
  ☆154Mar 6, 2025Updated last year
• decoder-it / KrbRelayEx

  View on GitHub
  ☆381Oct 17, 2025Updated 4 months ago
• MrAle98 / CVE-2025-21333-POC

  View on GitHub
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆228Apr 12, 2025Updated 10 months ago
• Maldev-Academy / AlphabeticalPolyShellGen

  View on GitHub
  Generate an Alphabetical Polymorphic Shellcode
  ☆137Aug 19, 2025Updated 6 months ago
• iSee857 / CVE-2025-24813-PoC

  View on GitHub
  Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)
  ☆94Apr 2, 2025Updated 11 months ago
• CICADA8-Research / Spyndicapped

  View on GitHub
  COM ViewLogger — new malware keylogging technique
  ☆405Jan 6, 2025Updated last year
• T3nb3w / ComDotNetExploit

  View on GitHub
  A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and …
  ☆335Mar 6, 2025Updated last year
• rad9800 / FileRenameJunctionsEDRDisable

  View on GitHub
  ☆159Dec 13, 2024Updated last year
• 0xNinjaCyclone / EarlyCascade

  View on GitHub
  A PoC for Early Cascade process injection technique.
  ☆211Jan 30, 2025Updated last year
• dobin / SuperMega

  View on GitHub
  Stealthily inject shellcode into an executable
  ☆452Oct 19, 2025Updated 4 months ago
• Meowmycks / koneko

  View on GitHub
  Robust Cobalt Strike shellcode loader with multiple advanced evasion features
  ☆200Apr 21, 2025Updated 10 months ago
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆84Apr 4, 2025Updated 11 months ago
• passtheticket / CVE-2024-38200

  View on GitHub
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆146Jan 13, 2025Updated last year
• doyensec / malicious-devfile-registry

  View on GitHub
  Exploit for CVE-2024-0402 in Gitlab
  ☆15Mar 18, 2025Updated 11 months ago
• JoasASantos / ShadowPhish

  View on GitHub
  ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…
  ☆228Apr 18, 2025Updated 10 months ago
• sud0Ru / NauthNRPC

  View on GitHub
  Enumerate Domain Users Without Authentication
  ☆282Apr 22, 2025Updated 10 months ago
• 0xHossam / HuffLoader

  View on GitHub
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆283Apr 6, 2025Updated 11 months ago
• MaLDAPtive / Invoke-Maldaptive

  View on GitHub
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆336Aug 7, 2024Updated last year
• safedv / RustSoliloquy

  View on GitHub
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆191Apr 26, 2025Updated 10 months ago
• NtDallas / MemLoader

  View on GitHub
  Run native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
  ☆270Jun 18, 2025Updated 8 months ago
• ricardojoserf / NativeDump

  View on GitHub
  Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
  ☆701May 7, 2025Updated 10 months ago
• Kryp7os / SharpRBCD

  View on GitHub
  An executable that simplifies adding the msds-AllowedToActOnBehalfOfOtherIdentity attribute for RBCD
  ☆49Mar 10, 2025Updated last year
• decoder-it / NewMachineAccount

  View on GitHub
  ☆38Feb 26, 2025Updated last year