Alternatives and similar repositories for WindowsPrivilegeEscalation:

Users that are interested in WindowsPrivilegeEscalation are comparing it to the libraries listed below

• chompie1337 / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆485Updated last year
• xforcered / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆418Updated last year
• daem0nc0re / PrivFu
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆828Updated this week
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆820Updated 2 years ago
• fortra / CVE-2023-28252
  ☆173Updated last year
• varwara / CVE-2024-26229
  CWE-781: Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
  ☆331Updated 6 months ago
• gabriellandau / PPLFault
  ☆517Updated 10 months ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆627Updated 2 years ago
• trickster0 / TartarusGate
  TartarusGate, Bypassing EDRs
  ☆557Updated 2 years ago
• lab52io / LeakedHandlesFinder
  Leaked Windows processes handles identification tool
  ☆281Updated 2 years ago
• hacksysteam / CVE-2023-21608
  Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
  ☆269Updated last year
• Cracked5pider / Ekko
  Sleep Obfuscation
  ☆706Updated last year
• antonioCoco / SspiUacBypass
  Bypassing UAC with SSPI Datagram Contexts
  ☆427Updated last year
• NUL0x4C / AtomPePacker
  A Highly capable Pe Packer
  ☆689Updated 2 years ago
• Wh04m1001 / CVE-2023-21752
  ☆309Updated 2 years ago
• redteamsocietegenerale / DLLirant
  DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
  ☆483Updated 2 years ago
• epi052 / osed-scripts
  bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)
  ☆511Updated 6 months ago
• zcgonvh / EfsPotato
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆742Updated last year
• reveng007 / DarkWidow
  Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …
  ☆613Updated 3 months ago
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆895Updated 7 months ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆359Updated 2 years ago
• p0dalirius / windows-coerced-authentication-methods
  A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) wit…
  ☆508Updated 10 months ago
• capt-meelo / laZzzy
  laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
  ☆467Updated 2 years ago
• L4ys / CVE-2022-21882
  ☆194Updated 2 years ago
• boku7 / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆1,275Updated last year
• tastypepperoni / PPLBlade
  Protected Process Dumper Tool
  ☆527Updated last year
• hakaioffsec / CVE-2024-21338
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆288Updated 9 months ago
• klezVirus / SysWhispers3
  SysWhispers on Steroids - AV/EDR evasion via direct system calls.
  ☆1,352Updated 5 months ago
• RedTeamOperations / Advanced-Process-Injection-Workshop
  ☆739Updated last year
• 0vercl0k / CVE-2022-21971
  PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
  ☆307Updated 2 years ago