ycdxsb / WindowsPrivilegeEscalationLinks
Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)
☆422Updated 8 months ago
Alternatives and similar repositories for WindowsPrivilegeEscalation
Users that are interested in WindowsPrivilegeEscalation are comparing it to the libraries listed below
Sorting:
- LPE exploit for CVE-2023-21768☆422Updated 2 years ago
- LPE exploit for CVE-2023-21768☆491Updated 2 years ago
- Kernel mode WinDbg extension and PoCs for token privilege investigation.☆872Updated 6 months ago
- A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)☆317Updated 2 years ago
- bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)☆564Updated last year
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆724Updated 6 months ago
- Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit☆273Updated last year
- ☆549Updated last year
- ☆760Updated last year
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆649Updated 2 years ago
- ☆180Updated 2 years ago
- Alternative Shellcode Execution Via Callbacks☆1,596Updated 2 years ago
- CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code☆348Updated last year
- An Xdbg Plugin of the ERC Library.☆181Updated 3 months ago
- Another Windows Local Privilege Escalation from Service Account to System☆876Updated 2 years ago
- win32k LPE☆463Updated 3 years ago
- This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.☆511Updated last month
- Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)☆735Updated 11 months ago
- TartarusGate, Bypassing EDRs☆600Updated 3 years ago
- Sleep Obfuscation☆771Updated last year
- A modern 32/64-bit position independent implant template☆1,240Updated 4 months ago
- Leaked Windows processes handles identification tool☆288Updated 3 years ago
- Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".☆682Updated 2 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,193Updated last year
- SysWhispers on Steroids - AV/EDR evasion via direct system calls.☆1,473Updated last year
- Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting☆358Updated 2 years ago
- Original C Implementation of the Hell's Gate VX Technique☆1,080Updated 4 years ago
- laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.☆487Updated 2 years ago
- A Highly capable Pe Packer☆715Updated 2 years ago
- Proof-of-Concept for CVE-2023-38146 ("ThemeBleed")☆199Updated last year