Alternatives and similar repositories for ad-cve-privesc

Users that are interested in ad-cve-privesc are comparing it to the libraries listed below

• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆63Updated last year
• hyp3rlinx / PSTrojanFile
  Unfixed Windows PowerShell Filename Code Execution POC
  ☆41Updated 2 years ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆36Updated 2 years ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆110Updated 2 years ago
• itm4n / Pentest-Windows
  Windows internals and exploitation tricks
  ☆112Updated 2 months ago
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆31Updated last year
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆125Updated last year
• LuemmelSec / CVE-2023-29357
  ☆53Updated 2 years ago
• synacktiv / bbs
  bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or ch…
  ☆94Updated 6 months ago
• watchtowrlabs / connectwise-screenconnect_auth-bypass-add-user-poc
  ☆73Updated last year
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆61Updated 9 months ago
• mhaskar / DNSKeyGen
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆40Updated 3 years ago
• zoemurmure / CVE-2023-21554-PoC
  CVE-2023-21554 Windows MessageQueuing PoC，分析见 https://www.zoemurmure.top/posts/cve_2023_21554/
  ☆57Updated 2 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆40Updated 2 years ago
• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆64Updated last year
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 3 months ago
• Wh04m1001 / CVE-2023-36723
  ☆68Updated 2 years ago
• Wh04m1001 / UserManagerEoP
  ☆82Updated last year
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆28Updated last year
• Wh04m1001 / ZoneAlarmEoP
  Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV
  ☆26Updated 3 years ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆88Updated last month
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆64Updated last year
• horizon3ai / CVE-2024-9464
  Proof of Concept Exploit for CVE-2024-9464
  ☆45Updated last year
• watchtowrlabs / fortios-auth-bypass-check-CVE-2024-55591
  ☆68Updated last year
• two06 / CerealKiller
  .NET deserialization hunter
  ☆81Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆118Updated 2 years ago
• watchtowrlabs / CVE-2024-40711
  Pre-Auth Exploit for CVE-2024-40711
  ☆55Updated last year
• p0dalirius / microsoft-rpc-fuzzing-tools
  This repository contains a list of python scripts to work with Microsoft RPC for research purposes.
  ☆51Updated 11 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated last year