m417z/CVE-2023-36003-POC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

m417z/CVE-2023-36003-POC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/m417z/CVE-2023-36003-POC)

Close

m417z / CVE-2023-36003-POCView on GitHubMore

• External links
• Readme badge

Privilege escalation using the XAML diagnostics API (CVE-2023-36003)

☆94Jan 11, 2024Updated 2 years ago

Alternatives and similar repositories for CVE-2023-36003-POC

Users that are interested in CVE-2023-36003-POC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Wh04m1001 / CVE-2024-20656

  View on GitHub
  ☆137Jan 14, 2024Updated 2 years ago
• alfarom256 / LogMeInPoCHandleDup

  View on GitHub
  ☆63Feb 5, 2024Updated 2 years ago
• RandomRobbieBF / CVE-2023-7028

  View on GitHub
  CVE-2023-7028
  ☆58Jan 12, 2024Updated 2 years ago
• duck-sec / CVE-2023-28252-Compiled-exe

  View on GitHub
  A modification to fortra's CVE-2023-28252 exploit, compiled to exe
  ☆54Jan 24, 2024Updated 2 years ago
• Avento / CVE-2023-22527_Confluence_RCE

  View on GitHub
  CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC
  ☆26Jan 23, 2024Updated 2 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• mlcsec / SigFinder

  View on GitHub
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Feb 6, 2024Updated 2 years ago
• Wra7h / SingleDose

  View on GitHub
  Generate Shellcode Loaders & Injects
  ☆159May 15, 2023Updated 2 years ago
• PlayExploits / CTF-S----challenges-pico-htb-ringzer0-etc

  View on GitHub
  This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"
  ☆14Dec 8, 2023Updated 2 years ago
• ACE-Responder / Empire-C2-RCE-PoC

  View on GitHub
  RCE PoC for Empire C2 framework <5.9.3
  ☆28Feb 24, 2024Updated 2 years ago
• mdsecactivebreach / PleasantTools

  View on GitHub
  Tools for Attacking Pleasant Password Server
  ☆23Sep 19, 2023Updated 2 years ago
• BlackSnufkin / GhostDriver

  View on GitHub
  yet another AV killer tool using BYOVD
  ☆309Dec 12, 2023Updated 2 years ago
• caueb / ThreadlessStompingKann

  View on GitHub
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆78Dec 23, 2023Updated 2 years ago
• zimnyaa / smbsocks

  View on GitHub
  A simple rpc2socks alternative in pure Go.
  ☆31Jul 8, 2024Updated last year
• nettitude / CVE-2024-25153

  View on GitHub
  Proof-of-concept exploit for CVE-2024-25153.
  ☆42Mar 13, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• nbaertsch / AutoAppDomainHijack

  View on GitHub
  Automated .NET AppDomain hijack payload generation
  ☆129Feb 4, 2025Updated last year
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP

  View on GitHub
  ☆64Mar 14, 2024Updated 2 years ago
• zerozenxlabs / CVE-2023-36424

  View on GitHub
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆131Mar 22, 2024Updated 2 years ago
• Unprotect-Project / FuncInEvasionTechniqueDemo

  View on GitHub
  ☆35Dec 21, 2023Updated 2 years ago
• Cipher7 / havoc-PoolParty

  View on GitHub
  Windows Thread Pool Injection Havoc Implementation
  ☆34Mar 23, 2024Updated 2 years ago
• duy-31 / CVE-2023-35636

  View on GitHub
  Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
  ☆43Jan 30, 2024Updated 2 years ago
• dwisiswant0 / cve-2023-50164-poc

  View on GitHub
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Dec 18, 2023Updated 2 years ago
• duy-31 / CVE-2024-21413

  View on GitHub
  Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
  ☆157Feb 17, 2024Updated 2 years ago
• Nero22k / cve-2023-29360

  View on GitHub
  Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver
  ☆153Oct 12, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ka7ana / CVE-2023-36025

  View on GitHub
  Quick test for CVE-2023-26025 behaviours
  ☆13Nov 29, 2023Updated 2 years ago
• decoder-it / LocalPotato

  View on GitHub
  ☆706Nov 7, 2023Updated 2 years ago
• syncwithali / HavocExploit

  View on GitHub
  A remote unauthenticated DOS POC exploit that targets the authentication implementation of Havoc.
  ☆37Nov 16, 2023Updated 2 years ago
• BC-SECURITY / Moriarty

  View on GitHub
  Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…
  ☆515Aug 7, 2024Updated last year
• hackerhouse-opensource / Stinger

  View on GitHub
  CIA UAC bypass implementation of Stinger that obtains the token from an auto-elevated process, modifies it, and reuses it to execute as A…
  ☆302Feb 2, 2026Updated 2 months ago
• h4x0r-dz / CVE-2024-21893.py

  View on GitHub
  CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure
  ☆95Feb 2, 2024Updated 2 years ago
• MaorSabag / SafeCrypt

  View on GitHub
  SafeCrypt is an academic ransomware simulation suite developed for Red Team engagements. It demonstrates modern malware techniques includ…
  ☆34Oct 3, 2025Updated 6 months ago
• Maldev-Academy / RemoteTLSCallbackInjection

  View on GitHub
  Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process
  ☆288Jan 21, 2024Updated 2 years ago
• decoder-it / DFSCoerce-exe-2

  View on GitHub
  DFSCoerce exe revisited version with custom authentication
  ☆43Jan 13, 2024Updated 2 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• netero1010 / GhostTask

  View on GitHub
  A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.
  ☆622Jan 2, 2025Updated last year
• MayerDaniel / profiler-lateral-movement

  View on GitHub
  Lateral Movement via the .NET Profiler
  ☆100Nov 21, 2024Updated last year
• matro7sh / matro7sh_loaders

  View on GitHub
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Dec 20, 2023Updated 2 years ago
• exploits-forsale / themebleed

  View on GitHub
  Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")
  ☆205Sep 13, 2023Updated 2 years ago
• skelsec / adiskreader

  View on GitHub
  Async Python library to parse local and remote disk images.
  ☆82Jul 11, 2025Updated 9 months ago
• S3cur3Th1sSh1t / Caro-Kann

  View on GitHub
  Encrypted shellcode Injection to avoid Kernel triggered memory scans
  ☆409Sep 12, 2023Updated 2 years ago
• Y3A / CVE-2023-28229

  View on GitHub
  ☆137Jan 8, 2024Updated 2 years ago