ynwarcs / CVE-2025-21298Links
Proof of concept & details for CVE-2025-21298
☆182Updated 4 months ago
Alternatives and similar repositories for CVE-2025-21298
Users that are interested in CVE-2025-21298 are comparing it to the libraries listed below
Sorting:
- ☆136Updated last year
- POC exploit for CVE-2024-49138☆249Updated 3 months ago
- Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability☆219Updated last year
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆193Updated last month
- ☆180Updated last year
- CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability☆141Updated 4 months ago
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆260Updated last year
- TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.☆137Updated 5 months ago
- This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.☆132Updated 3 months ago
- ☆251Updated 10 months ago
- Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.☆285Updated last year
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆254Updated 9 months ago
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆365Updated 5 months ago
- CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File☆301Updated 2 months ago
- Windows rootkit designed to work with BYOVD exploits☆198Updated 4 months ago
- Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation☆127Updated last year
- CVE-2024-30090 - LPE PoC☆107Updated 7 months ago
- Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762☆101Updated 11 months ago
- Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry☆416Updated 10 months ago
- Use hardware breakpoint to dynamically change SSN in run-time☆260Updated last year
- Ghosting-AMSI☆180Updated last month
- Extract and execute a PE embedded within a PNG file using an LNK file.☆417Updated 7 months ago
- ☆122Updated 9 months ago
- PoC module to demonstrate automated lateral movement with the Havoc C2 framework.☆302Updated last year
- Leverage WindowsApp createdump tool to obtain an lsass dump☆149Updated 8 months ago
- Nameless C2 - A C2 with all its components written in Rust☆267Updated 8 months ago
- ☆277Updated last year
- ☆257Updated last year
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆187Updated 6 months ago
- A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.☆187Updated last year