Alternatives and similar repositories for Windows-RCE-exploits:

Users that are interested in Windows-RCE-exploits are comparing it to the libraries listed below

• 0xeb-bp / bluekeep
  Public work for CVE-2019-0708
  ☆292Updated 5 years ago
• algo7 / bluekeep_CVE-2019-0708_poc_to_exploit
  An Attempt to Port BlueKeep PoC from @Ekultek to actual exploits
  ☆345Updated 4 years ago
• mdsecactivebreach / CACTUSTORCH
  CACTUSTORCH: Payload Generation for Adversary Simulations
  ☆1,006Updated 6 years ago
• 0xbadjuju / Tokenvator
  A tool to elevate privilege with Windows Tokens
  ☆1,040Updated last year
• danigargu / CVE-2020-0796
  CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
  ☆1,319Updated 4 years ago
• hatRiot / token-priv
  Token Privilege Research
  ☆815Updated 7 years ago
• bhdresh / CVE-2017-0199
  Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective wa…
  ☆727Updated 7 years ago
• sailay1996 / UAC_Bypass_In_The_Wild
  Windows 10 UAC bypass for all executable files which are autoelevate true .
  ☆646Updated 5 years ago
• harleyQu1nn / AggressorScripts
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆1,502Updated last year
• OneLogicalMyth / zeroday-powershell
  A PowerShell example of the Windows zero day priv esc
  ☆326Updated 6 years ago
• houjingyi233 / office-exploit-case-study
  ☆383Updated last year
• apt69 / COMahawk
  Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
  ☆350Updated 5 years ago
• embedi / CVE-2017-11882
  Proof-of-Concept exploits for CVE-2017-11882
  ☆495Updated 7 years ago
• Ekultek / BlueKeep
  Proof of concept for CVE-2019-0708
  ☆1,184Updated 3 years ago
• GreatSCT / GreatSCT
  The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…
  ☆1,127Updated 4 years ago
• 0xdeadbeefJERKY / Office-DDE-Payloads
  Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.
  ☆639Updated last year
• bluscreenofjeff / AggressorScripts
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆846Updated 2 years ago
• sensepost / rattler
  Automated DLL Enumerator
  ☆533Updated 7 years ago
• jamf / CVE-2020-0796-LPE-POC
  CVE-2020-0796 Local Privilege Escalation POC
  ☆241Updated 5 years ago
• rip1s / CVE-2017-11882
  CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.
  ☆329Updated 7 years ago
• DamonMohammadbagher / eBook-BypassingAVsByCSharp
  eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
  ☆466Updated last year
• vysecurity / morphHTA
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆523Updated 2 years ago
• killswitch-GUI / CobaltStrike-ToolKit
  Some useful scripts for CobaltStrike
  ☆845Updated 4 years ago
• ly4k / SMBGhost
  Scanner for CVE-2020-0796 - SMBv3 RCE
  ☆680Updated 4 years ago
• 51x / WHP
  Micro$oft Windows Hacking Pack
  ☆521Updated 7 years ago
• thezdi / PoC
  Proofs-of-concept
  ☆791Updated 8 months ago
• paranoidninja / Pandoras-Box
  This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I ge…
  ☆351Updated 6 years ago
• itm4n / UsoDllLoader
  Windows - Weaponizing privileged file writes with the Update Session Orchestrator service
  ☆388Updated 4 years ago
• rek7 / fireELF
  fireELF - Fileless Linux Malware Framework
  ☆668Updated 6 years ago
• nccgroup / demiguise
  HTA encryption tool for RedTeams
  ☆1,394Updated 2 years ago