dhmosfunk/7-Zip-CVE-2025-0411-POC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

dhmosfunk/7-Zip-CVE-2025-0411-POC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/dhmosfunk/7-Zip-CVE-2025-0411-POC)

Close

dhmosfunk / 7-Zip-CVE-2025-0411-POCView on GitHubMore

• External links
• Readme badge

This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.

☆154Mar 6, 2025Updated last year

Alternatives and similar repositories for 7-Zip-CVE-2025-0411-POC

Users that are interested in 7-Zip-CVE-2025-0411-POC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MrAle98 / CVE-2024-49138-POC

  View on GitHub
  POC exploit for CVE-2024-49138
  ☆268Feb 14, 2025Updated last year
• SafeBreach-Labs / CVE-2024-49113

  View on GitHub
  LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
  ☆515Jan 2, 2025Updated last year
• kapellos / VladimiRED

  View on GitHub
  ☆19Dec 18, 2024Updated last year
• offalltn / gitC2

  View on GitHub
  POC of GITHUB simple C2 in rust
  ☆52Jul 27, 2025Updated 8 months ago
• jsecu / ModTask

  View on GitHub
  ☆53Sep 23, 2025Updated 6 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆128Jan 23, 2025Updated last year
• NtDallas / Draugr

  View on GitHub
  BOF with Synthetic Stackframe
  ☆235Oct 30, 2025Updated 4 months ago
• 0x6rss / CVE-2025-24071_PoC

  View on GitHub
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆398Mar 20, 2025Updated last year
• KiExitDispatcher / Amsi-Patch-Updated-2025

  View on GitHub
  How to bypass AMSI (Antimalware Scan Interface) in PowerShell/C++ by dynamically patching the AmsiScanBuffer function.
  ☆27Apr 21, 2025Updated 11 months ago
• fin3ss3g0d / StoneKeeper

  View on GitHub
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆209Dec 25, 2024Updated last year
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆154Jul 23, 2025Updated 8 months ago
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆151Apr 18, 2025Updated 11 months ago
• xforcered / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆274Jul 1, 2025Updated 8 months ago
• deepinstinct / DCOMUploadExec

  View on GitHub
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆384Dec 13, 2024Updated last year
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆84Apr 4, 2025Updated 11 months ago
• zero2504 / FrostLock-Injection

  View on GitHub
  FrostLock Injection is a freeze/thaw-based code injection technique that uses Windows Job Objects to temporarily freeze (suspend) a targe…
  ☆43Apr 6, 2025Updated 11 months ago
• ColeHouston / Sunder

  View on GitHub
  Windows rootkit designed to work with BYOVD exploits
  ☆218Jan 18, 2025Updated last year
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆153Mar 25, 2025Updated last year
• redr0nin / CVE-2024-38143

  View on GitHub
  Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
  ☆24Feb 5, 2025Updated last year
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆268Apr 8, 2025Updated 11 months ago
• NtDallas / Svartalfheim

  View on GitHub
  Stage 0
  ☆169Dec 18, 2024Updated last year
• CICADA8-Research / Penetration

  View on GitHub
  Our Tips&Tricks
  ☆148Mar 4, 2026Updated 3 weeks ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• Cracked5pider / earlycascade-injection

  View on GitHub
  early cascade injection PoC based on Outflanks blog post
  ☆240Nov 7, 2024Updated last year
• dmcxblue / Claude-C2

  View on GitHub
  Utilizng an MCP Server to communicate with your C2
  ☆89May 15, 2025Updated 10 months ago
• gsmith257-cyber / better-sliver

  View on GitHub
  Adversary Emulation Framework
  ☆129Jul 1, 2025Updated 8 months ago
• djackreuter / rustlualoader

  View on GitHub
  Shellcode loader that executes embedded Lua from Rust.
  ☆127Dec 16, 2024Updated last year
• Maldev-Academy / ExecutePeFromPngViaLNK

  View on GitHub
  Extract and execute a PE embedded within a PNG file using an LNK file.
  ☆465Nov 2, 2024Updated last year
• TheManticoreProject / DescribeNTSecurityDescriptor

  View on GitHub
  A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure
  ☆48Oct 4, 2025Updated 5 months ago
• Wh04m1001 / GamingServiceEoP5

  View on GitHub
  ☆31May 16, 2024Updated last year
• winsecurity / AMSI-Bypass-HWBP

  View on GitHub
  ☆26Aug 11, 2025Updated 7 months ago
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆283Sep 18, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• CICADA8-Research / COMThanasia

  View on GitHub
  A set of programs for analyzing common vulnerabilities in COM
  ☆249Sep 8, 2024Updated last year
• pwardle / ReflectiveLoader

  View on GitHub
  A Reflective Loader for macOS
  ☆148Jul 20, 2025Updated 8 months ago
• ChoiSG / bin2sideload

  View on GitHub
  ☆12Nov 12, 2023Updated 2 years ago
• Lucreza / WinDefExclusionFinder

  View on GitHub
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆27Nov 20, 2024Updated last year
• DarkSpaceSecurity / RunAs-Stealer

  View on GitHub
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆207Mar 6, 2025Updated last year
• Teach2Breach / pool_party_rs

  View on GitHub
  remote process injections using pool party techniques
  ☆70Jun 29, 2025Updated 9 months ago
• d0rb / CVE-2023-36874

  View on GitHub
  This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Wi…
  ☆77Mar 13, 2024Updated 2 years ago