Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)
☆469Nov 19, 2024Updated last year
Alternatives and similar repositories for WindowsPrivilegeEscalation
Users that are interested in WindowsPrivilegeEscalation are comparing it to the libraries listed below
Sorting:
- Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…☆258Sep 1, 2022Updated 3 years ago
- ☆27Feb 13, 2026Updated 2 weeks ago
- Exploit for CVE-2023-29360 targeting MSKSSRV.SYS driver☆153Oct 12, 2023Updated 2 years ago
- ☆180Jul 10, 2023Updated 2 years ago
- Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability detai…☆3,189Feb 15, 2023Updated 3 years ago
- ☆323Jan 13, 2023Updated 3 years ago
- Windows Security Resources☆74Jan 14, 2022Updated 4 years ago
- LPE exploit for CVE-2023-21768☆504Jul 10, 2023Updated 2 years ago
- LPE exploit for CVE-2023-36802☆167Oct 10, 2023Updated 2 years ago
- Windows Common Log File System Driver POC☆95Dec 21, 2021Updated 4 years ago
- Windows LPE exploit for CVE-2022-37969☆135Jul 11, 2023Updated 2 years ago
- CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM☆163Dec 24, 2022Updated 3 years ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆900Jan 21, 2025Updated last year
- Unofficial Common Log File System (CLFS) Documentation☆187Oct 5, 2021Updated 4 years ago
- ☆707Nov 7, 2023Updated 2 years ago
- Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability☆216May 9, 2024Updated last year
- Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)☆793Feb 9, 2022Updated 4 years ago
- ☆125Sep 5, 2024Updated last year
- Automatically Collect POC or EXP from GitHub by CVE ID.☆1,129Feb 24, 2026Updated last week
- UAC Bypass By Abusing Kerberos Tickets☆508Aug 10, 2023Updated 2 years ago
- msFuzz is a coverage-guided fuzzer for Windows kernel drivers that utilizes Intel PT and leverages constraint and dependency analysis to …☆218Dec 24, 2025Updated 2 months ago
- Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2☆250Jul 5, 2022Updated 3 years ago
- ☆137Jan 8, 2024Updated 2 years ago
- Reports and POCs for CVE 2024-43570 and CVE-2024-43535☆29Jun 7, 2025Updated 8 months ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,812Sep 4, 2024Updated last year
- ☆274Apr 17, 2025Updated 10 months ago
- PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap☆215Jul 2, 2020Updated 5 years ago
- This repo contains EXPs about Vulnerable Windows Driver☆47May 22, 2024Updated last year
- ☆144May 22, 2024Updated last year
- Windows KASLR bypass using prefetch side-channel☆177Apr 26, 2024Updated last year
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,594Jul 31, 2024Updated last year
- Exploit for CVE-2023-36802 targeting MSKSSRV.SYS driver☆112Oct 26, 2023Updated 2 years ago
- PoCs and tools for investigation of Windows process execution techniques☆953Feb 2, 2026Updated last month
- PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.☆568Jan 20, 2026Updated last month
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆227Apr 12, 2025Updated 10 months ago
- clfs CVE 的一些 POC 收集☆16Oct 27, 2022Updated 3 years ago
- Leaked Windows processes handles identification tool☆291Mar 14, 2022Updated 3 years ago
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆130Mar 22, 2024Updated last year
- .NET assembly loader with patchless AMSI and ETW bypass☆368Apr 19, 2023Updated 2 years ago