irsl / microsoft-diagcab-rce-pocView external linksLinks
Proof of concept about a path traversal vulnerability in Microsoft's Diagcab technology that could lead to remote code execution
β23Jun 16, 2022Updated 3 years ago
Alternatives and similar repositories for microsoft-diagcab-rce-poc
Users that are interested in microsoft-diagcab-rce-poc are comparing it to the libraries listed below
Sorting:
- πΎDogwalk PoC (using diagcab file to obtain RCE on windows)β78Aug 11, 2022Updated 3 years ago
- Simple patcher tool to turn off TLS handshake validation in golang binariesβ12Apr 23, 2022Updated 3 years ago
- PoC of injecting code into a running Linux processβ23Sep 11, 2019Updated 6 years ago
- β17Feb 29, 2020Updated 5 years ago
- Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attributeβ¦β155Jun 18, 2023Updated 2 years ago
- β23Mar 6, 2023Updated 2 years ago
- Proof of Concept code for CVE-2020-0728β47Feb 12, 2020Updated 6 years ago
- A simple, LFI vulnerable PHP applicationβ18Sep 27, 2018Updated 7 years ago
- My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interneβ¦β21May 20, 2024Updated last year
- Yet, Another Packer/Loaderβ25Feb 26, 2023Updated 2 years ago
- β18Dec 12, 2020Updated 5 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post�β25Sep 19, 2022Updated 3 years ago
- β24Jun 9, 2024Updated last year
- Ivanti EPM AgentPortal RCE Vulnerabilityβ20Sep 16, 2024Updated last year
- POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandboxβ21Aug 9, 2022Updated 3 years ago
- Ivanti EPM SQL Injection Remote Code Execution Vulnerabilityβ26Jun 12, 2024Updated last year
- Slides from out talk at BH IL 2022β29Mar 21, 2022Updated 3 years ago
- Proof of Concept Exploit for CVE-2024-9465β30Oct 9, 2024Updated last year
- β28Apr 1, 2018Updated 7 years ago
- β43Jul 17, 2025Updated 7 months ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/β31Feb 26, 2024Updated last year
- Proof of Concept for EFSRPC Arbitrary File Upload (CVE-2021-43893)β64Feb 14, 2022Updated 4 years ago
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.β38Mar 16, 2022Updated 3 years ago
- CVE-2020-8950 AMD User Experience Program Launcher from Radeon Software Privilege Escalation ( FileWrite eop)β29Apr 23, 2020Updated 5 years ago
- β125Sep 5, 2024Updated last year
- β35Apr 15, 2022Updated 3 years ago
- β12Apr 8, 2025Updated 10 months ago
- Right-To-Left Override POCβ36Mar 21, 2022Updated 3 years ago
- Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploitβ283Dec 5, 2023Updated 2 years ago
- Yet another Windows DLL injector.β40Nov 17, 2021Updated 4 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systemsβ28Jul 27, 2018Updated 7 years ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)β45Oct 16, 2024Updated last year
- [Patched] Sandbox escape Chrome exploit. Allows the execution of local binaries, read/write functions and exfiltration of Chrome OAuth toβ¦β29Oct 13, 2017Updated 8 years ago
- Security Researchβ36Dec 23, 2021Updated 4 years ago
- Lurker is a cross-platform, companion implant to Cobalt Strike built with Goβ33Sep 3, 2025Updated 5 months ago
- Just another EDR killerβ94Jan 21, 2026Updated 3 weeks ago
- β10Jan 26, 2026Updated 3 weeks ago
- Privesc through import of Sheduled tasks + Hardlinks - CVE-2019-1069β37Jun 26, 2019Updated 6 years ago
- This script tampers the apk to inject Facebook Stetho library to inspect app sandbox data on non-rooted deviceβ41Oct 19, 2020Updated 5 years ago