dhmosfunk/7-Zip-CVE-2025-0411-POC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

dhmosfunk/7-Zip-CVE-2025-0411-POC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/dhmosfunk/7-Zip-CVE-2025-0411-POC)

Close

dhmosfunk / 7-Zip-CVE-2025-0411-POCView on GitHubMore

• External links
• Readme badge

This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.

☆154Mar 6, 2025Updated last year

Alternatives and similar repositories for 7-Zip-CVE-2025-0411-POC

Users that are interested in 7-Zip-CVE-2025-0411-POC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SafeBreach-Labs / CVE-2024-49113

  View on GitHub
  LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
  ☆519Jan 2, 2025Updated last year
• MrAle98 / CVE-2024-49138-POC

  View on GitHub
  POC exploit for CVE-2024-49138
  ☆268Feb 14, 2025Updated last year
• kapellos / VladimiRED

  View on GitHub
  ☆19Dec 18, 2024Updated last year
• offalltn / gitC2

  View on GitHub
  POC of GITHUB simple C2 in rust
  ☆54Jul 27, 2025Updated 9 months ago
• jsecu / ModTask

  View on GitHub
  ☆52Mar 30, 2026Updated last month
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆132Jan 23, 2025Updated last year
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆244Oct 30, 2025Updated 6 months ago
• 0x6rss / CVE-2025-24071_PoC

  View on GitHub
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆402Mar 20, 2025Updated last year
• fin3ss3g0d / StoneKeeper

  View on GitHub
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆210Dec 25, 2024Updated last year
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆155Jul 23, 2025Updated 9 months ago
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆154Apr 18, 2025Updated last year
• xforcered / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Jul 1, 2025Updated 10 months ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆384Dec 13, 2024Updated last year
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆84Apr 4, 2025Updated last year
• zero2504 / FrostLock-Injection

  View on GitHub
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆43Apr 6, 2025Updated last year
• ColeHouston / Sunder

  View on GitHub
  Windows rootkit designed to work with BYOVD exploits
  ☆219Jan 18, 2025Updated last year
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆154Mar 25, 2025Updated last year
• redr0nin / CVE-2024-38143

  View on GitHub
  Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
  ☆24Feb 5, 2025Updated last year
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆269Apr 8, 2025Updated last year
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• CICADA8-Research / Penetration

  View on GitHub
  Our Tips&Tricks
  ☆150Mar 4, 2026Updated 2 months ago
• Cracked5pider / earlycascade-injection

  View on GitHub
  early cascade injection PoC based on Outflanks blog post
  ☆241Nov 7, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• gsmith257-cyber / better-sliver

  View on GitHub
  Adversary Emulation Framework
  ☆130Jul 1, 2025Updated 10 months ago
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆91May 15, 2025Updated 11 months ago
• djackreuter / rustlualoader

  View on GitHub
  Shellcode loader that executes embedded Lua from Rust.
  ☆125Dec 16, 2024Updated last year
• Maldev-Academy / ExecutePeFromPngViaLNK

  View on GitHub
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆465Nov 2, 2024Updated last year
• Wh04m1001 / GamingServiceEoP5

  View on GitHub
  ☆31May 16, 2024Updated last year
• winsecurity / AMSI-Bypass-HWBP

  View on GitHub
  ☆26Aug 11, 2025Updated 8 months ago
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆286Sep 18, 2024Updated last year
• CICADA8-Research / COMThanasia

  View on GitHub
  A set of programs for analyzing common vulnerabilities in COM
  ☆258Sep 8, 2024Updated last year
• pwardle / ReflectiveLoader

  View on GitHub
  A Reflective Loader for macOS
  ☆149Jul 20, 2025Updated 9 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• TheManticoreProject / DescribeNTSecurityDescriptor

  View on GitHub
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆49Oct 4, 2025Updated 7 months ago
• ChoiSG / bin2sideload

  View on GitHub
  ☆12Nov 12, 2023Updated 2 years ago
• Lucreza / WinDefExclusionFinder

  View on GitHub
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆27Nov 20, 2024Updated last year
• d0rb / CVE-2023-36874

  View on GitHub
  This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…
  ☆78Mar 13, 2024Updated 2 years ago
• Teach2Breach / pool_party_rs

  View on GitHub
  remote process injections using pool party techniques
  ☆71Jun 29, 2025Updated 10 months ago
• deepinstinct / ShimMe

  View on GitHub
  ☆148Oct 29, 2024Updated last year
• DarkSpaceSecurity / RunAs-Stealer

  View on GitHub
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆208Mar 6, 2025Updated last year