☆146Mar 29, 2025Updated 11 months ago
Alternatives and similar repositories for windows-learning
Users that are interested in windows-learning are comparing it to the libraries listed below
Sorting:
- ☆286Jul 31, 2024Updated last year
- CVE-2024-30090 - LPE PoC☆108Oct 17, 2024Updated last year
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆258Sep 1, 2022Updated 3 years ago
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆227Apr 12, 2025Updated 10 months ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆45Oct 16, 2024Updated last year
- TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.☆136Dec 22, 2024Updated last year
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆130Mar 22, 2024Updated last year
- ☆149Jan 25, 2024Updated 2 years ago
- Adaptive DLL hijacking / dynamic export forwarding - EAT preserve☆79Aug 5, 2024Updated last year
- Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths☆360Aug 11, 2024Updated last year
- This repo contains EXPs about Vulnerable Windows Driver☆47May 22, 2024Updated last year
- a tool used to analyze and monitor in named pipes☆194Oct 27, 2024Updated last year
- POC for CVE-2023-29360☆12Aug 31, 2024Updated last year
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆151Apr 26, 2024Updated last year
- ☆82Aug 30, 2024Updated last year
- HackSysExtremeVulnerableDriver exploits for latest Windows 10 version☆26Jan 13, 2026Updated last month
- Admin to Kernel code execution using the KSecDD driver☆265Apr 19, 2024Updated last year
- ☆125Sep 5, 2024Updated last year
- ☆41Jul 9, 2020Updated 5 years ago
- POC exploit for CVE-2024-49138☆267Feb 14, 2025Updated last year
- Plantronics Desktop Hub LPE☆37May 15, 2024Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆75Jul 29, 2024Updated last year
- Windows KASLR bypass using prefetch side-channel☆178Apr 26, 2024Updated last year
- ☆147Oct 29, 2024Updated last year
- ☆108Aug 21, 2024Updated last year
- ☆194Jul 29, 2024Updated last year
- poc for CVE-2024-38063 (RCE in tcpip.sys)☆690Aug 27, 2024Updated last year
- Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar☆137Aug 10, 2024Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆155May 7, 2024Updated last year
- Windows LPE☆139Jun 11, 2024Updated last year
- Process injection alternative☆406Sep 6, 2024Updated last year
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆345Nov 19, 2024Updated last year
- This repository contains PoC for CVE-2024-7965. This is the vulnerability in the V8 that occurs only within ARM64.☆49Sep 16, 2024Updated last year
- Helper idapython code for reversing kmdf drivers☆75Jul 20, 2022Updated 3 years ago
- A set of programs for analyzing common vulnerabilities in COM☆248Sep 8, 2024Updated last year
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆382Dec 13, 2024Updated last year
- Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.☆315Apr 16, 2024Updated last year
- poc code for CVE-2024-38080☆30Sep 1, 2024Updated last year
- ☆40Apr 23, 2025Updated 10 months ago