Alternatives and similar repositories for CVE-2021-1675

Users that are interested in CVE-2021-1675 are comparing it to the libraries listed below

• hlldz / CVE-2021-1675-LPE

  View on GitHub
  Local Privilege Escalation Edition for CVE-2021-1675/CVE-2021-34527
  ☆327Jul 5, 2021Updated 4 years ago
• cube0x0 / CVE-2021-1675

  View on GitHub
  C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆1,962Jul 20, 2021Updated 4 years ago
• byt3bl33d3r / ItWasAllADream

  View on GitHub
  A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
  ☆804May 19, 2024Updated last year
• calebstewart / CVE-2021-1675

  View on GitHub
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,088Jul 5, 2021Updated 4 years ago
• GossiTheDog / HiveNightmare

  View on GitHub
  Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
  ☆808Jul 26, 2021Updated 4 years ago
• bats3c / ADCSPwn

  View on GitHub
  A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…
  ☆863Mar 20, 2023Updated 2 years ago
• bohops / UltimateWDACBypassList

  View on GitHub
  A centralized resource for previously documented WDAC bypass techniques
  ☆606Sep 8, 2025Updated 5 months ago
• HuskyHacks / ShadowSteal

  View on GitHub
  Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
  ☆214Jan 16, 2022Updated 4 years ago
• GhostPack / ForgeCert

  View on GitHub
  "Golden" certificates
  ☆710Aug 17, 2024Updated last year
• outflanknl / PrintNightmare

  View on GitHub
  ☆345Sep 13, 2021Updated 4 years ago
• improsec / ImproHound

  View on GitHub
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆326Nov 6, 2022Updated 3 years ago
• horizon3ai / CVE-2021-38647

  View on GitHub
  Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)
  ☆233Sep 16, 2021Updated 4 years ago
• S3cur3Th1sSh1t / MultiPotato

  View on GitHub
  ☆539Nov 20, 2021Updated 4 years ago
• zeronetworks / BloodHound-Tools

  View on GitHub
  Collection of tools that reflect the network dimension into Bloodhound's data
  ☆447Oct 19, 2022Updated 3 years ago
• mhaskar / DNSStager

  View on GitHub
  Hide your payload in DNS
  ☆617May 3, 2023Updated 2 years ago
• OG-Sadpanda / SharpExcelibur

  View on GitHub
  Read Excel Spreadsheets (XLS/XLSX) using Cobalt Strike's Execute-Assembly
  ☆90Sep 30, 2024Updated last year
• klezVirus / CVE-2021-40444

  View on GitHub
  CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
  ☆823Oct 11, 2023Updated 2 years ago
• GhostPack / RestrictedAdmin

  View on GitHub
  Remotely enables Restricted Admin Mode
  ☆215Sep 3, 2021Updated 4 years ago
• securesean / DecryptAutoLogon

  View on GitHub
  Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon
  ☆224Dec 5, 2020Updated 5 years ago
• GhostPack / PSPKIAudit

  View on GitHub
  PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
  ☆914Feb 28, 2024Updated last year
• antonioCoco / RemotePotato0

  View on GitHub
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,438Dec 18, 2022Updated 3 years ago
• topotam / PetitPotam

  View on GitHub
  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
  ☆2,175Aug 15, 2024Updated last year
• hausec / ProxyLogon

  View on GitHub
  ☆298Jul 2, 2024Updated last year
• kyleavery / scarecrow_wrapper

  View on GitHub
  ☆39Jul 29, 2021Updated 4 years ago
• rvrsh3ll / SharpSMBSpray

  View on GitHub
  Spray a hash via smb to check for local administrator access
  ☆142Feb 7, 2021Updated 5 years ago
• juliourena / SharpNoPSExec

  View on GitHub
  Get file less command execution for lateral movement.
  ☆634Jun 3, 2022Updated 3 years ago
• zcgonvh / EfsPotato

  View on GitHub
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆817Dec 14, 2023Updated 2 years ago
• swisskyrepo / SharpLAPS

  View on GitHub
  Retrieve LAPS password from LDAP
  ☆433Feb 17, 2021Updated 4 years ago
• hausec / Set-RBCDBytes

  View on GitHub
  ☆18Nov 24, 2020Updated 5 years ago
• optiv / Dent

  View on GitHub
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆297Aug 18, 2023Updated 2 years ago
• RedSection / OffensivePH

  View on GitHub
  OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
  ☆334Oct 9, 2021Updated 4 years ago
• ThunderGunExpress / BADministration

  View on GitHub
  ☆128May 22, 2023Updated 2 years ago
• guidepointsecurity / RedCommander

  View on GitHub
  Red Team C2 Infrastructure built in AWS using Ansible!
  ☆232Oct 4, 2020Updated 5 years ago
• mhaskar / Octopus

  View on GitHub
  Open source pre-operation C2 server based on python and powershell
  ☆761Jul 6, 2021Updated 4 years ago
• 3lp4tr0n / BeaconHunter

  View on GitHub
  Detect and respond to Cobalt Strike beacons using ETW.
  ☆520Jul 15, 2022Updated 3 years ago
• CCob / SweetPotato

  View on GitHub
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,808Sep 4, 2024Updated last year
• Flangvik / DeployPrinterNightmare

  View on GitHub
  C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!
  ☆183Aug 4, 2021Updated 4 years ago
• cube0x0 / MiniDump

  View on GitHub
  C# Lsass parser
  ☆296Oct 13, 2021Updated 4 years ago
• Cobalt-Strike / beacon_health_check

  View on GitHub
  This aggressor script uses a beacon's note field to indicate the health status of a beacon.
  ☆141Sep 29, 2021Updated 4 years ago