该漏洞存在于 NtQueryInformationToken 函数中,特别是在处理AuthzBasepCopyoutInternalSecurityAttributes 函数时,该漏洞源于内核在操作对象时对锁定机制的不当管理,这一失误可能导致恶意实体意外提升权限。
☆43Jul 5, 2024Updated last year
Alternatives and similar repositories for CVE-2024-30088-Windows-poc
Users that are interested in CVE-2024-30088-Windows-poc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆42Jun 23, 2024Updated last year
- Exploit for CVE-2024-4885☆17Jul 8, 2024Updated last year
- A local privilege escalation vulnerability in VMware vCenter Server (and VMware Cloud Foundation) caused by a misconfiguration of sudo, a…☆58Jul 9, 2024Updated last year
- ☆10Jun 15, 2024Updated last year
- Windows AppLocker Driver (appid.sys) LPE☆78Jul 29, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆288Jul 31, 2024Updated last year
- 哥斯拉源码-v3.03-godzilla☆146Apr 6, 2022Updated 4 years ago
- Pyload RCE with js2py sandbox escape☆18Oct 26, 2024Updated last year
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆126Jul 12, 2024Updated last year
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated 2 years ago
- A Dynamic MSBuild task to help with minor obfuscation of C# Binaries to evade static signatures on each compilation☆37Dec 7, 2025Updated 5 months ago
- ☆125Sep 5, 2024Updated last year
- Windows LPE Nday☆33Apr 26, 2024Updated 2 years ago
- 这是一款加解密工具适用于勒索病毒应急演练的展示☆21May 31, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- basic concept for the latest windows wifi driver CVE☆238Oct 31, 2024Updated last year
- ☆147Mar 29, 2025Updated last year
- The vulnerability allows an attacker with network access to an Erlang/OTP SSH server to execute arbitrary code without prior authenticati…☆15Aug 4, 2025Updated 9 months ago
- bootkit驱动映射,三环进程注入加载指定模块☆14Oct 8, 2024Updated last year
- poc code for CVE-2024-38080☆30Sep 1, 2024Updated last year
- A collection of cpuid instruction implementations for anti-vm purposes.☆10Oct 5, 2023Updated 2 years ago
- CVE-2024-30078 Detection and Command Execution Script☆81Jun 23, 2024Updated last year
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆100Dec 22, 2025Updated 4 months ago
- 某 FE 平台一键漏洞探测工具,支持单 url 以及批量探测☆33Nov 11, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 从入门到放弃的产物,学习过程中用python实现的一个单点c2基本功能☆11Mar 11, 2020Updated 6 years ago
- 基于go语言的帆软报表漏洞检测工具☆14Sep 4, 2022Updated 3 years ago
- Supporting PoCs and scripts for my talk "OverLAPS: Overriding LAPS Logic"☆22Oct 12, 2025Updated 6 months ago
- Red team tool designed for quickly identifying hijackable programs, evading antivirus software, and EDR (Endpoint Detection and Response)…☆76Feb 27, 2025Updated last year
- 内网配置文件快速收集☆28Jul 25, 2023Updated 2 years ago
- Convert native dll to shellcode, and support exported function☆25Feb 10, 2021Updated 5 years ago
- Exfiltrate sensitive user data from apps on Android 12 and 13 using CVE-2024-0044 vulnerability remotely☆76Jul 31, 2024Updated last year
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Feb 6, 2026Updated 3 months ago
- ☆28Feb 6, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆29Dec 29, 2022Updated 3 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago
- Core C++ library for C2 architecture, message handling, and security tooling experiments.☆24Updated this week
- 一个记录本机IP的小程序☆35Jan 8, 2025Updated last year
- 重构Beacon☆166Aug 19, 2024Updated last year
- A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user☆41Aug 15, 2024Updated last year
- ZTE F660 Routers Authentication Bypass Leading to RCE.☆19Feb 18, 2024Updated 2 years ago