Alternatives and similar repositories for CVE-2025-48799

Users that are interested in CVE-2025-48799 are comparing it to the libraries listed below

• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆145Updated 10 months ago
• Wh04m1001 / CVE-2024-20656
  ☆138Updated last year
• Dump-GUY / EXE-or-DLL-or-ShellCode
  Just a simple silly PoC demonstrating executable "exe" file that can be used like exe, dll or shellcode...
  ☆171Updated last year
• Sachinart / CVE-2024-38063-poc
  Note: I am not responsible for any bad act. This is written by Chirag Artani to demonstrate the vulnerability.
  ☆87Updated last year
• rweijnen / createdump
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆151Updated last year
• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆191Updated 10 months ago
• NtDallas / KrakenMask
  Sleep obfuscation
  ☆251Updated 11 months ago
• je5442804 / WPTaskScheduler_CVE-2024-49039
  WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler
  ☆132Updated 4 months ago
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆119Updated 5 months ago
• 0xHossam / HuffLoader
  Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Loader.
  ☆279Updated 7 months ago
• MrAle98 / CVE-2024-49138-POC
  POC exploit for CVE-2024-49138
  ☆265Updated 9 months ago
• lsecqt / ThreadlessInject-C-Implementation
  This repository implements Threadless Injection in C
  ☆172Updated last year
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆95Updated 9 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆219Updated 7 months ago
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆137Updated 11 months ago
• TwoSevenOneT / WSASS
  This is the tool to dump the LSASS process on modern Windows 11
  ☆507Updated last month
• oldboy21 / RflDllOb
  Reflective DLL Injection Made Bella
  ☆244Updated 10 months ago
• rasta-mouse / process-inject-kit
  Port of Cobalt Strike's Process Inject Kit
  ☆189Updated last year
• 0xdea / blindsight
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆243Updated last month
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆223Updated 7 months ago
• trickster0 / NamelessC2
  Nameless C2 - A C2 with all its components written in Rust
  ☆278Updated last year
• Maldev-Academy / LsassHijackingViaReg
  Injecting DLL into LSASS at boot
  ☆150Updated 7 months ago
• oh-az / NoArgs
  NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…
  ☆154Updated last year
• Darkrain2009 / RedExt
  Chrome browser extension-based Command & Control
  ☆220Updated 5 months ago
• MalwareTech / EDRception
  A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
  ☆200Updated last year
• Cobalt-Strike / sleepmask-vs
  A simple Sleepmask BOF example
  ☆157Updated last week
• j3h4ck / WatchDogKiller
  PoC exploit for the vulnerable WatchDog Anti-Malware driver (amsdk.sys) – weaponized to kill protected EDR/AV processes via BYOVD.
  ☆175Updated 2 months ago
• boku7 / patchwerk
  BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)
  ☆195Updated 9 months ago
• Maldev-Academy / MaldevAcademyLdr.2
  RunPE implementation with multiple evasive techniques
  ☆250Updated 2 months ago
• 0xJs / BlockEDRTraffic
  Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows …
  ☆252Updated 2 months ago