Alternatives and similar repositories for CVE-2025-21420_POC

Users that are interested in CVE-2025-21420_POC are comparing it to the libraries listed below

• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆108Updated last year
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆37Updated 11 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 10 months ago
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆46Updated 9 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated 10 months ago
• fortra / CVE-2024-30051
  ☆122Updated last year
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆110Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆124Updated 4 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆68Updated last year
• pwardle / ReflectiveLoader
  A Reflective Loader for macOS
  ☆118Updated 3 months ago
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆62Updated last year
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆87Updated last year
• Wh04m1001 / UserManagerEoP
  ☆81Updated last year
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆135Updated 10 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆48Updated last year
• Maldev-Academy / TrapFlagForSyscalling
  Bypass user-land hooks by syscall tampering via the Trap Flag
  ☆131Updated 2 months ago
• Whitecat18 / earlycascade-injection
  Early cascade injection PoC based on Outflanks blog post written in Rust
  ☆58Updated 9 months ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆105Updated last year
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆78Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆166Updated last year
• pwnfuzz / byovd-watchdog
  Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.
  ☆31Updated 2 months ago
• Teach2Breach / stargate
  Locate dlls and function addresses without PEB Walk and EAT parsing
  ☆90Updated 3 months ago
• kr0tt / EarlyExceptionHandling
  Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH
  ☆129Updated 2 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• whokilleddb / function-collections
  A collection of PoCs to do common things in unconventional ways
  ☆120Updated 2 months ago
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆82Updated last year
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆162Updated 11 months ago
• knight0x07 / NailaoLoader-Hiding-Execution-Flow
  NailaoLoader: Hiding Execution Flow via Patching
  ☆20Updated 8 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆149Updated 3 months ago