local-privilege-escalation

There are 3 repositories under local-privilege-escalation topic.

• jm33-m0 / emp3r0r

  Linux/Windows post-exploitation framework made by linux user

  post-exploitationstealthlinuxhacking-toolemp3r0rrattrojan-malwaremalwareredteamredteamingrootkitlocal-privilege-escalationcve-2021-4034
  Language:Go 1209

• nickvourd / Windows-Local-Privilege-Escalation-Cookbook

  Windows Local Privilege Escalation Cookbook

  administratoradministrator-privilegescheatsheetcmdcookbookeoplablab-automationlocal-administrationlocal-privilege-escalationlpemicrosoftmisconfigurationoscposcp-preposeposep-preppowershellprivilege-escalationwindows
  Language:PowerShell 789

• b3rito / yodo

  Local Privilege Escalation

  linuxlocal-privilege-escalationprivilege-escalation
  Language:Shell 202

• sailay1996 / PrintNightmare-LPE

  CVE-2021-1675 (PrintNightmare)

  windows-exploitationlocal-privilege-escalationwindows-privilege-escalationprintnightmare
  Language:C++ 74

• mathisvickie / CVE-2021-21551

  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system

  pocexploitcvecve-2021-21551windowsprivilege-escalationlocal-privilege-escalationkernel-driverkerneldriverproof-of-conceptdelldell-driverdbutil
  Language:C 49

• jm33-m0 / go-lpe

  A collection of weaponized LPE exploits written in Go

  cve-2021-4034local-privilege-escalation
  Language:Go 44

• yanghaoi / LaunchSystemCmd

  在权限足够的情况下弹出system权限的cmd命令行，包含exe和dll两种文件类型，可用于一些可能存在本地提权漏洞的测试。

  local-privilege-escalationsystem-cmd-gui
  Language:C++ 28

• M507 / Miner

  Local Privilege Escalation Miner

  automationlocal-privilege-escalationsecurityvulnerability-researchvulnerability-scanners
  Language:PowerShell 22

• mathisvickie / CVE-2021-27965

  stack based buffer overflow in MsIo64.sys, Proof of Concept Local Privilege Escalation to nt authority/system

  buffer-overflowcvecve-2021-27965driverexploitkernelkernel-driverlocal-privilege-escalationmsio64pocprivilege-escalationproof-of-conceptstack-buffer-overflowwindows
  Language:C 10

• LucaBarile / DLL-Hijacking

  DLL Hijacking using DLL Proxying technique

  dll-hijackingdll-proxyingprivilege-escalationwindows-privilege-escalationexported-functionspocproof-of-conceptexploitvulnerabilitycvehijackinglocal-privilege-escalationelevation-of-privilegemingw-w64pop-a-shell
  Language:HTML 5

• OXDBXKXO / ez-pwnkit

  Go implementation of the PwnKit Linux Local Privilege Escalation exploit (CVE-2021-4034)

  cvecve-2021-4034exploitgogolanggolang-packagelinuxlocal-privilege-escalationlpepkexecpwnkit
  Language:Go 5

• LucaBarile / TOCTOU

  Exploiting TOCTOU vulnerability using OpLock and Junctions

  toctouvulnerabilityexploitrace-conditionsopportunistic-lockoplockjunctionsymlinksymbolic-linkcvepocproof-of-conceptpop-a-shelllpeeoplocal-privilege-escalationelevation-of-privilege
  Language:C# 4

• dennisbabkin / Win10RestartBlocker

  App to control restarts after installation of Windows Updates & custom patch for vulnerability in Windows 10 Update Service.

  bugsdll-hijackdll-hijackinglocal-privilege-escalationupdatesvulnerabilitywindowswindows-10
  Language:C++ 3

• mbadanoiu / CVE-2022-21392

  CVE-2022-21392: Local Privilege Escalation via NMR SUID in Oracle Enterprise Manager

  0-daycvecveslocal-privilege-escalationcve-2022-21392
  3

• LucaBarile / ZDI-CAN-16857

  Exploit and report for CVE-2023-32163

  exploitpocproof-of-concept0daybugbountydisclosureelevation-of-privilegelocal-privilege-escalationlpeprivilege-escalationvulnerabilitywacomwrite-upwriteups0-daywacom-driverwacom-vulnerabilityzdi-can-16857logical-vulnerabilitycve-2023-32163
  2

• f4T1H21 / dirty_sock

  Local Privilege Escalation via snapd (CVE-2019-7304) Remastered PoC exploit

  exploitlocal-privilege-escalationpoccve-2019-7304
  Language:Python 1

• LucaBarile / CVE-2022-38604

  Exploits and reports for CVE-2022-38604

  denial-of-serviceelevation-of-privilegeexploitlocal-privilege-escalationpocproof-of-conceptvulnerabilitywacomwacom-vulnerabilitywrite-uparbitrary-file-deletionlink-followinglink-following-attackwindows-denial-of-service0-daydisclosureimpersonationmount-pointsymbolic-linkzero-day
  Language:C++ 1

• mbadanoiu / CVE-2021-20253

  CVE-2021-20253: Privilege Escalation via Job Isolation Escape in Ansible Tower

  0-daycvecveslocal-privilege-escalationcve-2021-20253
  1

• mbadanoiu / CVE-2022-29063

  CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz

  0-daycvecveslocal-privilege-escalationcve-2022-29063deserialization
  1

• mbadanoiu / CVE-2023-26269

  CVE-2023-26269: Misconfigured JMX in Apache James

  cvecvescve-2023-262690-daylocal-privilege-escalationunauthenticatedmlet
  1

• LucaBarile / ZDI-CAN-16318

  Exploits and reports for CVE-2023-32162

  0-day0dayelevation-of-privilegeexploitlocal-privilege-escalationlpeprivilege-escalationzdi-can-16318vulnerabilitywacomwacom-driverwacom-vulnerabilitybugbountydisclosurepocproof-of-conceptwrite-upwriteupslogical-vulnerabilitycve-2023-32162
  0

• luckythandel / CVE-2021-4034

  This is a POC for the vulnerability found in polkit's pkexec binary which is used to run programs as another users.

  cve-2021-4034local-privilege-escalationpkexecpolkitpolkit-agentpolkit-exploit
  Language:C

• mbadanoiu / CVE-2020-8248

  CVE-2020-8248: Privilege Escalation via Zip Wildcard Exploit in Pulse Secure VPN Linux Client

  0-daycvecveslocal-privilege-escalationcve-2020-8248wildcard-injection

• mbadanoiu / CVE-2020-8249

  CVE-2020-8249: Buffer Overflow in Pulse Secure VPN Linux Client

  0-daybuffer-overflowcvecveslocal-privilege-escalationcve-2020-8249

• mbadanoiu / CVE-2020-8250

  CVE-2020-8250: Privilege Escalation via Command Injection in Pulse Secure VPN Linux Client

  0-daycommand-injectioncvecveslocal-privilege-escalationcve-2020-8250

• mbadanoiu / CVE-2022-20818

  CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN

  0-daycvecve-2022-20818cveslocal-privilege-escalation