Alternatives and similar repositories for CVE-2025-21420_POC

Users that are interested in CVE-2025-21420_POC are comparing it to the libraries listed below

• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆108Updated last year
• fortra / CVE-2024-30051
  ☆122Updated last year
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆37Updated last year
• D4m0n / CVE-2025-50168-pwn2own-berlin-2025
  CVE-2025-50168 Exploit PoC — Pwn2Own Berlin 2025 - LPE(Windows 11) winning bug.
  ☆110Updated 3 weeks ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 10 months ago
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆47Updated 10 months ago
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆136Updated 11 months ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• Wh04m1001 / UserManagerEoP
  ☆82Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆50Updated last year
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆95Updated 9 months ago
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆67Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆125Updated 5 months ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆62Updated last year
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆131Updated 3 months ago
• Print3M / c-to-shellcode
  From C to binary shellcode converter.
  ☆48Updated 2 weeks ago
• pwardle / ReflectiveLoader
  A Reflective Loader for macOS
  ☆134Updated 4 months ago
• deepinstinct / ShimMe
  ☆145Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆105Updated last year
• pwnfuzz / byovd-watchdog
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆31Updated 2 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆69Updated last year
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆78Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆169Updated last year
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Updated last year
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• Teach2Breach / stargate
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆90Updated 3 weeks ago
• whokilleddb / function-collections
  A collection of PoCs to do common things in unconventional ways
  ☆119Updated 3 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆60Updated 9 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated 11 months ago