Alternatives and similar repositories for CVE-2025-21692-poc

Users that are interested in CVE-2025-21692-poc are comparing it to the libraries listed below

• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆34Updated last year
• rbmm / Services
  ☆18Updated 8 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆25Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆45Updated 11 months ago
• aaaddress1 / ntkrnlProtectScan
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Updated last year
• BitsByWill / ksmbd-n-day
  Authenticated 0-click RCE against Linux 6.1.45 for CVE-2023-52440 and CVE-2023-4130
  ☆39Updated this week
• TraiLeR2 / CVE-2023-36168
  An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component
  ☆11Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• freakick22 / SpyAI
  Intelligent Malware that takes screenshots for entire monitors and exfiltrate them through Trusted Channel Slack to the C2 server that's …
  ☆34Updated this week
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆65Updated last year
• shalomc / bhasia2025
  BlackHat Asia 2025 code and presentations
  ☆18Updated 5 months ago
• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated last year
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆27Updated 5 months ago
• rxOred / process-hollowing
  process hollowing variant using NtCreateSection + NtMapViewOfSection + ResumeThread
  ☆30Updated 3 years ago
• rbmm / TL-TASK
  ☆20Updated this week
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆50Updated 4 months ago
• nothingspecialforu / EvtPsst
  EvtPsst
  ☆55Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• EvilBytecode / Evilbytecode-Gate
  Evilbytecode-Gate resolves Windows System Service Numbers (SSNs) using two methods: analyzing the Guard CF Table in ntdll.dll and parsing…
  ☆24Updated 4 months ago
• eversinc33 / RDPassSpray
  Python3 tool to perform password spraying using RDP
  ☆17Updated 2 years ago
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆50Updated last year
• rasta-mouse / pwnlift
  Easy peasy file uploads
  ☆23Updated 2 weeks ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆59Updated 3 years ago
• xelemental / Mal-LNK-Generator
  ☆34Updated 5 months ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆53Updated last year
• rad9800 / RansomFS
  ☆32Updated 6 months ago
• Slowerzs / KeyJumper
  ☆50Updated 5 months ago