Alternatives and similar repositories for themebleed

Users that are interested in themebleed are comparing it to the libraries listed below

• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆360Updated 2 years ago
• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆191Updated 10 months ago
• fortra / CVE-2023-28252
  ☆178Updated 2 years ago
• Wh04m1001 / CVE-2024-20656
  ☆138Updated last year
• MrAle98 / CVE-2024-49138-POC
  POC exploit for CVE-2024-49138
  ☆265Updated 9 months ago
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆145Updated 10 months ago
• Wh04m1001 / CVE-2023-36874
  ☆234Updated 2 years ago
• MzHmO / LeakedWallpaper
  Leak of any user's NetNTLM hash. Fixed in KB5040434
  ☆259Updated last year
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated 2 years ago
• Chocapikk / CVE-2023-29357
  Microsoft SharePoint Server Elevation of Privilege Vulnerability
  ☆234Updated 2 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆210Updated 2 years ago
• xforcered / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆424Updated 2 years ago
• mansk1es / CVE-2024-21111
  Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
  ☆221Updated last year
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆223Updated 7 months ago
• Wh04m1001 / CVE-2025-48799
  ☆255Updated 4 months ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆316Updated 2 years ago
• ommadawn46 / win-x86-shellcoder
  A tool for developing bad character-free shellcode to bypass DEP with WriteProcessMemory (32-bit only)
  ☆72Updated 3 years ago
• testanull / MS-SharePoint-July-Patch-RCE-PoC
  ☆157Updated last year
• BlackSnufkin / GhostDriver
  yet another AV killer tool using BYOVD
  ☆299Updated last year
• chompie1337 / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆504Updated 2 years ago
• Maldev-Academy / Christmas
  ☆259Updated last year
• Sachinart / CVE-2024-38063-poc
  Note: I am not responsible for any bad act. This is written by Chirag Artani to demonstrate the vulnerability.
  ☆87Updated last year
• sqrtZeroKnowledge / CVE-2023-23397_EXPLOIT_0DAY
  Exploit for the CVE-2023-23397
  ☆160Updated 2 years ago
• k4sth4 / UAC-bypass
  Windows Privilege Escalation
  ☆100Updated last year
• BishopFox / cve-2024-21762-check
  Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762
  ☆106Updated last year
• senzee1984 / EDRPrison
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆440Updated last year
• senzee1984 / Amsi_Bypass_In_2023
  Amsi Bypass payload that works on Windwos 11
  ☆376Updated 2 years ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆194Updated last year
• Wh04m1001 / SysmonEoP
  ☆184Updated 2 years ago
• xct / SeManageVolumeAbuse
  SeManageVolumePrivilege to SYSTEM
  ☆140Updated 2 years ago