Alternatives and similar repositories for CVE-2024-49138-POC

Users that are interested in CVE-2024-49138-POC are comparing it to the libraries listed below

• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆190Updated 9 months ago
• 0x6rss / CVE-2025-24071_PoC
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆358Updated 7 months ago
• rad9800 / BootExecuteEDR
  ☆403Updated 10 months ago
• Wh04m1001 / CVE-2025-48799
  ☆250Updated 3 months ago
• TwoSevenOneT / WSASS
  This is the tool to dump the LSASS process on modern Windows 11
  ☆459Updated last month
• Maldev-Academy / ExecutePeFromPngViaLNK
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆449Updated 11 months ago
• CICADA8-Research / Spyndicapped
  COM ViewLogger — new malware keylogging technique
  ☆393Updated 9 months ago
• Wh04m1001 / CVE-2024-20656
  ☆137Updated last year
• Meowmycks / LetMeowIn
  A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
  ☆432Updated last year
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆144Updated 9 months ago
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆221Updated 6 months ago
• dobin / SuperMega
  Stealthily inject shellcode into an executable
  ☆379Updated last week
• tykawaii98 / CVE-2024-30088
  ☆275Updated last year
• lypd0 / DeadPotato
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆443Updated last year
• senzee1984 / InflativeLoading
  Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
  ☆320Updated last year
• Xre0uS / MultiDump
  MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
  ☆527Updated 6 months ago
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆238Updated last month
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆297Updated last year
• cpu0x00 / Ghost
  Evasive shellcode loader
  ☆390Updated last year
• exploits-forsale / themebleed
  Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")
  ☆199Updated 2 years ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆258Updated last year
• vxCrypt0r / Voidmaw
  A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…
  ☆330Updated last year
• senzee1984 / EDRPrison
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆437Updated last year
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆272Updated 6 months ago
• vxCrypt0r / Voidgate
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆569Updated last year
• Maldev-Academy / Christmas
  ☆261Updated last year
• OtterHacker / Conferences
  ☆327Updated last month
• hakaioffsec / CVE-2024-21338
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆301Updated last year
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆277Updated last year
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆306Updated 3 weeks ago