Alternatives and similar repositories for PrintNightmare

Users that are interested in PrintNightmare are comparing it to the libraries listed below

• sailay1996 / delete2SYSTEM
  Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM
  ☆123Updated 5 years ago
• decoder-it / NetworkServiceExploit
  POC for NetworkService PrivEsc
  ☆126Updated 5 years ago
• AlmondOffSec / PoCs
  Proof-of-concept code for various bugs
  ☆110Updated last year
• chompie1337 / SIGRed_RCE_PoC
  ☆269Updated 2 years ago
• irsl / CVE-2020-1313
  Proof of concept exploit of Windows Update Orchestrator Service Elevation of Privilege Vulnerability
  ☆125Updated 5 years ago
• gitjdm / dumper2020
  Yet another LSASS dumper
  ☆74Updated 4 years ago
• Cerbersec / DomainBorrowingC2
  ☆170Updated 4 years ago
• waldo-irc / CVE-2021-21551
  Exploit to SYSTEM for CVE-2021-21551
  ☆235Updated 4 years ago
• goichot / CVE-2020-3153
  Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal
  ☆106Updated 5 years ago
• sourceincite / CVE-2021-24085
  ☆71Updated 4 years ago
• boku7 / winx64-InjectAllProcessesMeterpreter-Shellcode
  64bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.
  ☆131Updated 2 years ago
• sailay1996 / RpcSsImpersonator
  Privilege Escalation Via RpcSs svc
  ☆181Updated 3 years ago
• decoder-it / juicy_2
  juicypotato for win10 > 1803 & win server 2019
  ☆97Updated 4 years ago
• FSecureLABS / incognito
  One Token To Rule Them All https://labs.mwrinfosecurity.com/blog/incognito-v2-0-released/
  ☆156Updated 5 years ago
• jbaines-r7 / shakeitoff
  Windows MSI Installer LPE (CVE-2021-43883)
  ☆79Updated 3 years ago
• xct / diaghub
  Loads a custom dll in system32 via diaghub.
  ☆80Updated 5 years ago
• sailay1996 / cve-2020-1337-poc
  poc for CVE-2020-1337 (Windows Print Spooler Elevation of Privilege)
  ☆171Updated 5 years ago
• uf0o / CVE-2020-17382
  PoC exploits for CVE-2020-17382
  ☆115Updated 5 years ago
• cube0x0 / CVE-2020-1472
  ☆38Updated 5 years ago
• CCob / MirrorDump
  Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…
  ☆267Updated 4 years ago
• aahmad097 / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆136Updated 4 years ago
• notdodo / adduser-dll
  Simple DLL that add a user to the local Administrators group
  ☆78Updated 3 years ago
• sailay1996 / SpoolTrigger
  Weaponizing for privileged file writes bugs with PrintNotify Service
  ☆133Updated 3 years ago
• ioncodes / CVE-2020-16938
  Bypassing NTFS permissions to read any files as unprivileged user.
  ☆190Updated 5 years ago
• SolomonSklash / SyscallPOC
  Shellcode injection POC using syscalls.
  ☆117Updated 5 years ago
• numanturle / PrintNightmare
  ☆63Updated 3 years ago
• darkr4y / SharpOffensiveShell
  A sort of simple shell which support multiple protocols.
  ☆99Updated 6 years ago
• forrest-orr / DoubleStar
  A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of m…
  ☆147Updated 3 years ago
• checkymander / Carbuncle
  Tool for interacting with outlook interop during red team engagements
  ☆146Updated 4 years ago
• Pai-Po / CVE-2021-1732
  CVE-2021-1732 poc & exp; tested on 20H2
  ☆67Updated 4 years ago