Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation via WER service.
☆35Feb 19, 2026Updated last week
Alternatives and similar repositories for CVE-2026-20817
Users that are interested in CVE-2026-20817 are comparing it to the libraries listed below
Sorting:
- A simple research-focused AES-based shellcode loader demonstrating in-memory execution and NTAPI techniques to help understand how custom…☆38Feb 19, 2026Updated last week
- Standalone API for Binary Ninja's LLIL☆21Aug 6, 2024Updated last year
- ☆27Jan 17, 2026Updated last month
- Less sugar (entropy) for your binaries☆34Sep 10, 2025Updated 5 months ago
- Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits☆31Jun 14, 2022Updated 3 years ago
- Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router☆30Oct 16, 2025Updated 4 months ago
- Detect BypassUAC using AMSI☆29Feb 18, 2025Updated last year
- Dump Kerberos tickets☆44Aug 4, 2025Updated 6 months ago
- ☆59Nov 18, 2024Updated last year
- An example of a client and server using Windows' ALPC functions to send and receive data.☆115Jan 21, 2025Updated last year
- A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (D…☆93Jan 21, 2026Updated last month
- Quickly find differences and similarities in disassembled code☆40Nov 21, 2024Updated last year
- ☆72Jan 29, 2026Updated 3 weeks ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆85Oct 20, 2025Updated 4 months ago
- A C# utility for interacting with SCOM☆96Dec 2, 2025Updated 2 months ago
- ☆36Mar 4, 2025Updated 11 months ago
- A portable C# utility for enumerating local and remote windows sessions☆55Jan 1, 2026Updated last month
- Work with eBPF on Windows☆44Feb 26, 2025Updated last year
- WinDbg-ext-MCP bridges your favorite LLM client (like Cursor, Claude, or VS Code) with WinDbg, enabling real-time, AI assisted kernel deb…☆74Sep 10, 2025Updated 5 months ago
- Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…☆82Dec 22, 2025Updated 2 months ago
- PowerShell tool to enumerate existing exclusions in Windows Defender as low privileged user☆11Oct 14, 2024Updated last year
- Interprocess communication via a covert timing channel☆26Oct 24, 2025Updated 4 months ago
- Just another EDR killer☆106Jan 21, 2026Updated last month
- Active Directory share enumeration tool☆12Apr 28, 2025Updated 10 months ago
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…☆55Jul 13, 2025Updated 7 months ago
- sprint encode (plan text) get enc password☆45Sep 27, 2021Updated 4 years ago
- ☆12Nov 25, 2024Updated last year
- Flopz - Firmware Liberation on Python☆14Jun 22, 2024Updated last year
- ☆11Aug 19, 2017Updated 8 years ago
- User-Defined C2 BOF Template☆27Nov 24, 2025Updated 3 months ago
- Invoke-SPSI - Simple PowerShell Shellcode Injector☆37Oct 9, 2025Updated 4 months ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated last year
- Dll hijack -- just one macro☆12Jul 3, 2023Updated 2 years ago
- ☆16Feb 1, 2026Updated 3 weeks ago
- webshell编码工具 支持 jsp net php asp编码免杀☆27Dec 16, 2025Updated 2 months ago
- Repo of some outdated and new Linux stuff for the PLAYSTATION3☆13Aug 9, 2023Updated 2 years ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆30Sep 24, 2025Updated 5 months ago
- Windows Shell Link (LNK) Proof of Concept☆16Jul 19, 2025Updated 7 months ago
- Self-hosting binary instrumentation framework for security research☆12Apr 10, 2023Updated 2 years ago