Alternatives and similar repositories for CVE-2023-28252:

Users that are interested in CVE-2023-28252 are comparing it to the libraries listed below

• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆178Updated 3 weeks ago
• Nero22k / cve-2023-29360
  Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
  ☆148Updated last year
• Wh04m1001 / CVE-2023-36874
  ☆233Updated last year
• mansk1es / CVE-2024-21111
  Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
  ☆219Updated 10 months ago
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆126Updated last year
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆357Updated 2 years ago
• chompie1337 / Windows_MSKSSRV_LPE_CVE-2023-36802
  LPE exploit for CVE-2023-36802
  ☆161Updated last year
• fortra / CVE-2022-37969
  Windows LPE exploit for CVE-2022-37969
  ☆133Updated last year
• 0xHossam / KernelCallbackTable-Injection-PoC
  Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijac…
  ☆209Updated 5 months ago
• Y3A / CVE-2023-28229
  ☆128Updated last year
• xalicex / Killers
  Exploitation of process killer drivers
  ☆199Updated last year
• Wh04m1001 / CVE-2023-29343
  ☆162Updated last year
• Offensive-Panda / RWX_MEMEORY_HUNT_AND_INJECTION_DV
  Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
  ☆280Updated 10 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆114Updated last week
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆310Updated last year
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated last year
• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆168Updated 2 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆105Updated 5 months ago
• Maldev-Academy / Christmas
  ☆255Updated last year
• deepinstinct / DCOMUploadExec
  DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
  ☆349Updated 3 months ago
• senzee1984 / MutationGate
  Use hardware breakpoint to dynamically change SSN in run-time
  ☆247Updated 11 months ago
• Wh04m1001 / SysmonEoP
  ☆182Updated 2 years ago
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆64Updated 6 months ago
• je5442804 / WPTaskScheduler_CVE-2024-49039
  WPTaskScheduler RPC Persistence & CVE-2024-49039 via Task Scheduler
  ☆119Updated 4 months ago
• daem0nc0re / VectorKernel
  PoCs for Kernelmode rootkit techniques research.
  ☆359Updated 2 months ago
• Black-Frost / windows-learning
  ☆129Updated this week
• SaadAhla / UnhookingPatch
  Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
  ☆304Updated last year
• WKL-Sec / LayeredSyscall
  Generating legitimate call stack frame along with indirect syscalls by abusing Vectored Exception Handling (VEH) to bypass User-Land EDR …
  ☆244Updated 8 months ago
• Wh04m1001 / CVE-2024-20656
  ☆137Updated last year
• itm4n / PPLrevenant
  Bypass LSA protection using the BYODLL technique
  ☆154Updated 6 months ago