Alternatives and similar repositories for CVE-2021-33739-POC

Users that are interested in CVE-2021-33739-POC are comparing it to the libraries listed below

• DownWithUp / DynamicKernelShellcode
  An example of how x64 kernel shellcode can dynamically find and use APIs
  ☆104Updated 5 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆58Updated 3 years ago
• rjt-gupta / CVE-2021-29337
  CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)
  ☆31Updated 4 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆29Updated 4 years ago
• uvbs / NT-APC-Injector
  APC DLL Injector with NtQueueApcThread and wake up thread support
  ☆47Updated 8 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Updated 5 years ago
• csandker / RPCDump
  ☆84Updated 3 years ago
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆42Updated 10 years ago
• aaaddress1 / wowGrail
  PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)
  ☆109Updated 4 years ago
• hoangprod / DanSpecial
  Weaponizing Gigabyte driver for priv escalation and bypass PPL
  ☆69Updated 6 years ago
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆99Updated 5 years ago
• KangD1W2 / CVE-2021-26868
  ☆11Updated 4 years ago
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak
  ☆49Updated 5 years ago
• xpn / RpcEnum
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆108Updated 6 years ago
• Jb05s / Exploit-Dev-C
  ☆22Updated 5 years ago
• d35ha / PE2Shellcode
  Convert PE files to a shellcode
  ☆80Updated 5 years ago
• elastic / PPLGuard
  ☆70Updated 9 months ago
• iammaguire / Salient-Rootkit
  A kernel mode Windows rootkit in development.
  ☆49Updated 3 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆74Updated 4 years ago
• KaLendsi / CVE-2020-1054
  ☆20Updated 5 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆19Updated 5 years ago
• polakow / WindowsBypassSMEP
  Example for PagedOut!
  ☆25Updated 6 years ago
• UserExistsError / DllLoaderShellcode
  Shellcode to load an appended Dll
  ☆91Updated 5 years ago
• jackullrich / TRunPE
  A modified RunPE (process hollowing) technique avoiding the usage of SetThreadContext by appending a TLS section which calls the original…
  ☆97Updated 6 years ago
• WithSecureLabs / ModuleStomping
  https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/
  ☆121Updated 6 years ago
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆38Updated 3 years ago
• AzAgarampur / byeintegrity2-uac
  Bypass UAC by abusing the Internet Explorer Add-on installer
  ☆55Updated 4 years ago
• elddy / Windows-NTAPI-Injector
  Inject shellcode to process using Windows NTAPI for bypassing EDRs and Antiviruses
  ☆42Updated 4 years ago
• bytewreck / hook-buster
  Proof-of-Concept software for detecting AV/EDR hooks in Windows libraries.
  ☆31Updated 3 years ago
• k0keoyo / ksRPC_analysis_script
  ☆12Updated 5 years ago