Alternatives and similar repositories for CVE-2022-42046

Users that are interested in CVE-2022-42046 are comparing it to the libraries listed below

• binderlabs / DirCreate2System

  View on GitHub
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆363Dec 19, 2022Updated 3 years ago
• alfarom256 / CVE-2022-3699

  View on GitHub
  Lenovo Diagnostics Driver EoP - Arbitrary R/W
  ☆177Dec 5, 2022Updated 3 years ago
• GetRektBoy724 / DCMB

  View on GitHub
  Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!
  ☆246Jul 9, 2024Updated last year
• KiFilterFiberContext / warbird-hook

  View on GitHub
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆265Aug 31, 2022Updated 3 years ago
• estimated1337 / lenovo_exec

  View on GitHub
  CVE-2022-3699 with arbitrary kernel code execution capability
  ☆71Dec 27, 2022Updated 3 years ago
• deepinstinct / Dirty-Vanity

  View on GitHub
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆675Dec 23, 2022Updated 3 years ago
• Idov31 / Jormungandr

  View on GitHub
  Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.
  ☆243Sep 26, 2023Updated 2 years ago
• itm4n / PPLmedic

  View on GitHub
  Dump the memory of any PPL with a Userland exploit chain
  ☆352Mar 17, 2023Updated 2 years ago
• nccgroup / DetectWindowsCopyOnWriteForAPI

  View on GitHub
  Enumerate various traits from Windows processes as an aid to threat hunting
  ☆202Jan 13, 2022Updated 4 years ago
• mrexodia / lolbin-poc

  View on GitHub
  Small PoC of using a Microsoft signed executable as a lolbin.
  ☆141Feb 27, 2023Updated 2 years ago
• fortra / CVE-2023-28252

  View on GitHub
  ☆180Jul 10, 2023Updated 2 years ago
• mdsecactivebreach / DragonCastle

  View on GitHub
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆301Oct 26, 2022Updated 3 years ago
• AdamOron / PatchGuardBypass

  View on GitHub
  Bypassing PatchGuard on modern x64 systems
  ☆265Apr 9, 2023Updated 2 years ago
• Crypt0s / Ekko_CFG_Bypass

  View on GitHub
  A PoC for adding NtContinue to CFG allowed list in order to make Ekko work in a CFG protected process
  ☆113Aug 29, 2022Updated 3 years ago
• alfarom256 / MCP-PoC

  View on GitHub
  Minifilter Callback Patching Proof-of-Concept
  ☆73Oct 31, 2022Updated 3 years ago
• deepinstinct / Lsass-Shtinkering

  View on GitHub
  ☆385Jan 19, 2023Updated 3 years ago
• rbmm / LdrpKernel32DllName

  View on GitHub
  ☆90Jun 2, 2024Updated last year
• ly4k / PassTheChallenge

  View on GitHub
  Recovering NTLM hashes from Credential Guard
  ☆378Dec 26, 2022Updated 3 years ago
• MzHmO / psexec_noinstall

  View on GitHub
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆171Nov 5, 2024Updated last year
• enkomio / BrokenFlow

  View on GitHub
  A simple PoC to invoke an encrypted shellcode by using an hidden call
  ☆116Nov 19, 2022Updated 3 years ago
• nelfo / Milfuscator

  View on GitHub
  x86 PE Mutator
  ☆233Dec 24, 2022Updated 3 years ago
• namazso / MagicSigner

  View on GitHub
  Signtool for expired certificates
  ☆513Jun 10, 2023Updated 2 years ago
• tijme / amd-ryzen-master-driver-v17-exploit

  View on GitHub
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆154Jan 21, 2023Updated 3 years ago
• thesecretclub / SandboxBootkit

  View on GitHub
  Bootkit for Windows Sandbox to disable DSE/PatchGuard.
  ☆317Oct 13, 2024Updated last year
• zer0condition / NVDrv

  View on GitHub
  Abusing nvidia driver (nvoclock.sys) for physical/virtual memory and control register manipulation.
  ☆276Aug 25, 2023Updated 2 years ago
• XaFF-XaFF / Black-Angel-Rootkit

  View on GitHub
  Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
  ☆671Nov 9, 2023Updated 2 years ago
• Wh04m1001 / IDiagnosticProfileUAC

  View on GitHub
  ☆184Jul 2, 2022Updated 3 years ago
• wh0amitz / BypassCredGuard

  View on GitHub
  Credential Guard Bypass Via Patching Wdigest Memory
  ☆335Feb 3, 2023Updated 3 years ago
• rad9800 / TamperingSyscalls

  View on GitHub
  ☆504Aug 14, 2022Updated 3 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆952Feb 2, 2026Updated 2 weeks ago
• Octoberfest7 / EventViewerUAC_BOF

  View on GitHub
  Beacon Object File implementation of Event Viewer deserialization UAC bypass
  ☆133May 6, 2022Updated 3 years ago
• rad9800 / VehApiResolve

  View on GitHub
  ☆118Aug 7, 2022Updated 3 years ago
• hackerhouse-opensource / Gigabyte_ElevatePersist

  View on GitHub
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆33Feb 2, 2026Updated 2 weeks ago
• Wh04m1001 / CVE-2023-21752

  View on GitHub
  ☆322Jan 13, 2023Updated 3 years ago
• klezVirus / SilentMoonwalk

  View on GitHub
  PoC Implementation of a fully dynamic call stack spoofer
  ☆911Jul 20, 2024Updated last year
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆247Jul 5, 2022Updated 3 years ago
• namazso / msvcrt.lib

  View on GitHub
  .lib file for linking against the NT CRT
  ☆18Mar 18, 2022Updated 3 years ago
• phackt / wptsextensions.dll

  View on GitHub
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆55Jun 30, 2021Updated 4 years ago
• connormcgarr / EATGuard

  View on GitHub
  Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)
  ☆115May 21, 2023Updated 2 years ago