Alternatives and similar repositories for CVE-2025-21420_POC

Users that are interested in CVE-2025-21420_POC are comparing it to the libraries listed below

• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated last year
• D4m0n / CVE-2025-50168-pwn2own-berlin-2025
  CVE-2025-50168 Exploit PoC — Pwn2Own Berlin 2025 - LPE(Windows 11) winning bug.
  ☆137Updated 2 months ago
• fortra / CVE-2024-30051
  ☆122Updated last year
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆37Updated last week
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆135Updated last year
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated last year
• Maldev-Academy / Alphabetfuscation
  Convert your shellcode into an ASCII string
  ☆124Updated 6 months ago
• Network-Sec / CVE-2025-21420-PoC
  We found a way to DLL sideload with cleanmgr.exe
  ☆95Updated 10 months ago
• Wh04m1001 / CVE-2025-48799
  ☆259Updated 6 months ago
• fortra / CVE-2024-6769
  Activation cache poisoning to elevate from medium to high integrity (CVE-2024-6769)
  ☆79Updated last year
• zero2504 / Fairy-Law
  Fairy Law - Compromise or disable EDR security solutions
  ☆61Updated last month
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆50Updated last year
• cbwang505 / FilesystemEoPDesktopSystemShell
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆47Updated 11 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆70Updated last year
• pwardle / ReflectiveLoader
  A Reflective Loader for macOS
  ☆144Updated 5 months ago
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆224Updated 8 months ago
• Wh04m1001 / UserManagerEoP
  ☆82Updated last year
• eversinc33 / 1.6-C2
  Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
  ☆88Updated 10 months ago
• ig-labs / EDR-ALPC-Block-POC
  Blocking Windows EDR agents by registering an own IPC-object in the Object Manager’s namespace (CVE-2023-3280, CVE-2024-5909, CVE-2024-20…
  ☆33Updated 10 months ago
• EvilBytecode / Ebyte-AMSI-ProxyInjector
  A lightweight tool that injects a custom assembly proxy into a target process to silently bypass AMSI scanning by redirecting AmsiScanBuf…
  ☆60Updated 7 months ago
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆71Updated last year
• Print3M / c-to-shellcode
  From C to binary shellcode converter.
  ☆52Updated 2 months ago
• 0xf00sec / Aether
  Self-mutating macOS implant
  ☆103Updated 3 weeks ago
• tijme / nimplant-beacon-position-independent-c-code
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆66Updated 10 months ago
• warpnet / MS-RPC-Fuzzer
  Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By f…
  ☆324Updated 2 months ago
• wolfcod / lsassdump
  lsassdump via RtlCreateProcessReflection and NanoDump
  ☆85Updated last year
• c2pain / RustBird
  Early Bird APC Injection in Rust
  ☆63Updated last year
• Wh04m1001 / CVE-2023-36723
  ☆68Updated 2 years ago
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year