Alternatives and similar repositories for Windows_LPE_AFD_CVE-2023-21768

Users that are interested in Windows_LPE_AFD_CVE-2023-21768 are comparing it to the libraries listed below

• chompie1337 / Windows_LPE_AFD_CVE-2023-21768

  View on GitHub
  LPE exploit for CVE-2023-21768
  ☆506Jul 10, 2023Updated 2 years ago
• decoder-it / LocalPotato

  View on GitHub
  ☆705Nov 7, 2023Updated 2 years ago
• rkbennett / pybof

  View on GitHub
  Python module for running BOFs
  ☆79Nov 28, 2025Updated 2 months ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆953Feb 2, 2026Updated last week
• mdsecactivebreach / DragonCastle

  View on GitHub
  A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
  ☆301Oct 26, 2022Updated 3 years ago
• yardenshafir / IoRingReadWritePrimitive

  View on GitHub
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆247Jul 5, 2022Updated 3 years ago
• crisprss / RasmanPotato

  View on GitHub
  Abuse Impersonate Privilege from Service to SYSTEM like other potatoes do
  ☆400Feb 6, 2023Updated 3 years ago
• Wh04m1001 / CVE-2023-21752

  View on GitHub
  ☆322Jan 13, 2023Updated 3 years ago
• Impalabs / CVE-2023-27326

  View on GitHub
  VM Escape for Parallels Desktop <18.1.1
  ☆172Mar 15, 2024Updated last year
• daem0nc0re / PrivFu

  View on GitHub
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆900Jan 21, 2025Updated last year
• zblurx / certsync

  View on GitHub
  Dump NTDS with golden certificates and UnPAC the hash
  ☆647Mar 20, 2024Updated last year
• binderlabs / DirCreate2System

  View on GitHub
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆363Dec 19, 2022Updated 3 years ago
• trustedsec / CS_COFFLoader

  View on GitHub
  ☆131Dec 4, 2023Updated 2 years ago
• ly4k / SpoolFool

  View on GitHub
  Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
  ☆797Feb 9, 2022Updated 4 years ago
• med0x2e / NTLMRelay2Self

  View on GitHub
  An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
  ☆417Jan 27, 2024Updated 2 years ago
• iilegacyyii / ThreadlessInject-BOF

  View on GitHub
  BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released a…
  ☆394Jan 9, 2024Updated 2 years ago
• hackerhouse-opensource / ColorDataProxyUACBypass

  View on GitHub
  Exploits undocumented elevated COM interface ICMLuaUtil via process spoofing to edit registry then calls ColorDataProxy to trigger UAC b…
  ☆142Feb 2, 2026Updated last week
• Dec0ne / DavRelayUp

  View on GitHub
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆565Jun 5, 2023Updated 2 years ago
• grimlockx / ADCSKiller

  View on GitHub
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆738May 19, 2023Updated 2 years ago
• EspressoCake / PPLDump_BOF

  View on GitHub
  A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.
  ☆143Sep 24, 2021Updated 4 years ago
• Wh04m1001 / CVE-2023-29343

  View on GitHub
  ☆161Jun 18, 2023Updated 2 years ago
• boku7 / BokuLoader

  View on GitHub
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,398Nov 22, 2023Updated 2 years ago
• XiaoliChan / wmiexec-Pro

  View on GitHub
  New generation of wmiexec.py
  ☆1,255Jan 5, 2026Updated last month
• BeichenDream / GodPotato

  View on GitHub
  ☆2,182Nov 24, 2023Updated 2 years ago
• ZeroMemoryEx / Blackout

  View on GitHub
  kill anti-malware protected processes ( BYOVD )
  ☆970Jul 21, 2023Updated 2 years ago
• kyleavery / AceLdr

  View on GitHub
  Cobalt Strike UDRL for memory scanner evasion.
  ☆1,004Jun 4, 2024Updated last year
• j00sean / CVE-2022-44666

  View on GitHub
  Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute…
  ☆155Jun 18, 2023Updated 2 years ago
• JamesCooteUK / SharpSphere

  View on GitHub
  .NET Project for Attacking vCenter
  ☆553Nov 11, 2021Updated 4 years ago
• gabriellandau / PPLFault

  View on GitHub
  ☆563Feb 22, 2024Updated last year
• antonioCoco / JuicyPotatoNG

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆938Nov 12, 2022Updated 3 years ago
• Yaxser / Backstab

  View on GitHub
  A tool to kill antimalware protected processes
  ☆1,509Jun 19, 2021Updated 4 years ago
• hackerhouse-opensource / iscsicpl_bypassUAC

  View on GitHub
  UAC bypass for x64 Windows 7 - 11
  ☆829Feb 2, 2026Updated last week
• klezVirus / SilentMoonwalk

  View on GitHub
  PoC Implementation of a fully dynamic call stack spoofer
  ☆901Jul 20, 2024Updated last year
• optiv / Mangle

  View on GitHub
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆1,232Aug 18, 2023Updated 2 years ago
• pwn1sher / KillDefender

  View on GitHub
  A small POC to make defender useless by removing its token privileges and lowering the token integrity
  ☆689Jun 28, 2022Updated 3 years ago
• bugch3ck / SharpEfsPotato

  View on GitHub
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆338Oct 17, 2022Updated 3 years ago
• Octoberfest7 / Inline-Execute-PE

  View on GitHub
  Execute unmanaged Windows executables in CobaltStrike Beacons
  ☆714Mar 4, 2023Updated 2 years ago
• api0cradle / CVE-2023-23397-POC-Powershell

  View on GitHub
  ☆347Mar 17, 2023Updated 2 years ago
• SaadAhla / FilelessPELoader

  View on GitHub
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆1,021Aug 29, 2023Updated 2 years ago