Alternatives and similar repositories for themebleed

Users that are interested in themebleed are comparing it to the libraries listed below

• Wh04m1001 / CVE-2024-20656
  ☆136Updated last year
• MrAle98 / CVE-2024-49138-POC
  POC exploit for CVE-2024-49138
  ☆264Updated 10 months ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆362Updated 3 years ago
• fortra / CVE-2023-28252
  ☆179Updated 2 years ago
• Wh04m1001 / CVE-2023-36874
  ☆236Updated 2 years ago
• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆190Updated 11 months ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆257Updated last year
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆146Updated 11 months ago
• Chocapikk / CVE-2023-29357
  Microsoft SharePoint Server Elevation of Privilege Vulnerability
  ☆234Updated 2 years ago
• Maldev-Academy / Christmas
  ☆259Updated last year
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆194Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆300Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated 2 years ago
• N1k0la-T / CVE-2023-36745
  ☆167Updated 2 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆210Updated 2 years ago
• sqrtZeroKnowledge / CVE-2023-23397_EXPLOIT_0DAY
  Exploit for the CVE-2023-23397
  ☆160Updated 2 years ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆318Updated 2 years ago
• mandiant / msi-search
  ☆290Updated 2 years ago
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆158Updated last year
• Wh04m1001 / CVE-2025-48799
  ☆259Updated 5 months ago
• ommadawn46 / win-x86-shellcoder
  A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
  ☆72Updated 3 years ago
• rasta-mouse / OST-C2-Spec
  Open Source C&C Specification
  ☆277Updated 10 months ago
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆376Updated 2 years ago
• OtterHacker / Conferences
  ☆329Updated 3 months ago
• florylsk / ExecIT
  Execute shellcode files with rundll32
  ☆212Updated last year
• icyguider / LatLoader
  PoC module to demonstrate automated lateral movement with the Havoc C2 framework.
  ☆309Updated 2 years ago
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆144Updated 2 years ago
• wh0amitz / S4UTomato
  Escalate Service Account To LocalSystem via Kerberos
  ☆401Updated 2 years ago
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆225Updated 8 months ago
• brosck / Awesome-AV-EDR-XDR-Bypass
  Awesome AV/EDR/XDR Bypass Tips
  ☆285Updated 2 years ago