Alternatives and similar repositories for CVE-2024-37726-MSI-Center-Local-Privilege-Escalation

Users that are interested in CVE-2024-37726-MSI-Center-Local-Privilege-Escalation are comparing it to the libraries listed below

• Wh04m1001 / CVE-2023-36723
  ☆67Updated last year
• Wh04m1001 / UserManagerEoP
  ☆81Updated last year
• fortra / CVE-2024-30051
  ☆121Updated 11 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated 10 months ago
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆81Updated 10 months ago
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆112Updated last year
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆78Updated 3 months ago
• tykawaii98 / CVE-2024-21338_PoC
  ☆39Updated last year
• xct / CVE-2024-27460
  Plantronics Desktop Hub LPE
  ☆36Updated last year
• SafeBreach-Labs / RPC-Racer
  Toolset to manipulate RPC clients by finding delayed services and masquerading as them
  ☆85Updated last week
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆44Updated 7 months ago
• x0rb3l / CVE-2023-36802-MSKSSRV-LPE
  PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
  ☆35Updated last year
• Cracked5pider / eop24-26229
  A firebeam plugin that exploits the CVE-2024-26229 vulnerability to perform elevation of privilege from a unprivileged user
  ☆41Updated last year
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆83Updated 10 months ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Updated 7 months ago
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆29Updated 7 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆63Updated last year
• Leo4j / PPLKiller
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆56Updated 7 months ago
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆38Updated 5 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 7 months ago
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆137Updated 8 months ago
• tijme / nimplant-beacon-position-independent-c-code
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆61Updated 6 months ago
• EvilBytecode / Ebyte-AMSI-ProxyInjector
  A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…
  ☆48Updated 3 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆89Updated last year
• exploits-forsale / CVE-2024-21345
  Proof-of-Concept for CVE-2024-21345
  ☆75Updated last year
• d0rb / CVE-2023-36874
  This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…
  ☆77Updated last year
• Y3A / CVE-2023-28229
  ☆133Updated last year
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆92Updated 6 months ago
• wolfcod / beacondbg
  Beacon Debugger
  ☆52Updated 9 months ago
• maliciousgroup / RDI-SRDI
  This repo goes with the blog entry at blog.malicious.group entitled "Writing your own RDI / sRDI loader using C and ASM".
  ☆86Updated 2 years ago