Alternatives and similar repositories for PoCs:

Users that are interested in PoCs are comparing it to the libraries listed below

• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆126Updated 5 years ago
• RedCursorSecurityConsulting / CVE-2020-0668
  Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
  ☆220Updated 5 years ago
• sailay1996 / delete2SYSTEM
  Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM
  ☆123Updated 4 years ago
• irsl / CVE-2020-1313
  Proof of concept exploit of Windows Update Orchestrator Service Elevation of Privilege Vulnerability
  ☆121Updated 4 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆74Updated 5 years ago
• darkr4y / SharpOffensiveShell
  A sort of simple shell which support multiple protocols.
  ☆99Updated 5 years ago
• rxwx / spoolsystem
  Print Spooler Named Pipe Impersonation for Cobalt Strike
  ☆264Updated 4 years ago
• bytecod3r / Cobaltstrike-Aggressor-Scripts-Collection
  Collection of tested Cobaltstrike aggressor scripts.
  ☆116Updated 5 years ago
• goichot / CVE-2020-3153
  Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal
  ☆106Updated 4 years ago
• blackorbird / PrintNightmare
  ☆52Updated 3 years ago
• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆63Updated 6 years ago
• gitjdm / dumper2020
  Yet another LSASS dumper
  ☆76Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆149Updated 4 years ago
• fox-it / LDAPFragger
  ☆191Updated 5 years ago
• mdsecactivebreach / firewalker
  ☆151Updated 4 years ago
• newsoft / adduser
  Programmatically create an administrative user under Windows
  ☆180Updated 8 years ago
• khr0x40sh / WhiteListEvasion
  Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.
  ☆129Updated 9 years ago
• anthemtotheego / C_Shot
  ☆112Updated 4 years ago
• offsecginger / AggressorScripts
  Various Aggressor Scripts I've Created.
  ☆149Updated 3 years ago
• m57 / cobaltstrike_bofs
  My CobaltStrike BOFS
  ☆164Updated 2 years ago
• uf0o / CVE-2020-17382
  PoC exploits for CVE-2020-17382
  ☆114Updated 4 years ago
• rsmudge / ZeroLogon-BOF
  ☆158Updated 3 years ago
• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆135Updated 4 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆129Updated 2 years ago
• b4rtik / ATPMiniDump
  Evading WinDefender ATP credential-theft
  ☆255Updated 5 years ago
• waldo-irc / CVE-2021-21551
  Exploit to SYSTEM for CVE-2021-21551
  ☆237Updated 3 years ago
• decoder-it / pipeserverimpersonate
  named pipe server with impersonation
  ☆59Updated 5 years ago
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆157Updated 5 years ago
• bats3c / DefensiveInjector
  Shellcode injector using direct syscalls
  ☆119Updated 4 years ago
• S3cur3Th1sSh1t / NamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆143Updated 4 years ago