UEFI Bootkit Framework that attacks boot-time Code Integrity
☆118Dec 15, 2025Updated 2 months ago
Alternatives and similar repositories for Elysium
Users that are interested in Elysium are comparing it to the libraries listed below
Sorting:
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 11 months ago
- Abusing DDMA alongside Copy On Write for Cross Process Code Execution for a 3000$ Bug Bounty☆88Feb 1, 2026Updated last month
- Decrypting and intercepting encrypted imports of Vanguards Kernel Driver☆35Feb 13, 2024Updated 2 years ago
- SPI flash read MitM attack PoC☆40May 24, 2022Updated 3 years ago
- Extract sequences of instructions to be executed exclusively on a remote server☆38Oct 11, 2025Updated 4 months ago
- Simple anti-instrumentation with EFLAGS.AC☆17Mar 31, 2025Updated 11 months ago
- Using the peculiar behaviour of the VPGATHER instructions to determine if an address will fault before it is truly accessed. All done in …☆55Dec 30, 2025Updated 2 months ago
- hijacks the discord overlay and draws imgui inside of it while remaining flagless due to the discord overlay devs being retarded☆18Apr 29, 2025Updated 10 months ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆22Feb 19, 2023Updated 3 years ago
- uefi diskless persistence technique + OVMF secureboot bypass☆95Apr 22, 2024Updated last year
- ida utilities / plugins / scripts☆83Jan 29, 2026Updated last month
- Provides commands to read from and write to arbitrary kernel-mode memory for users with the Administrator privilege. HVCI compatible. No …☆23Jun 16, 2024Updated last year
- A serie of exploits targeting eneio64.sys - Turning Physical Memory R/W into Virtual Memory R/W☆116Oct 19, 2025Updated 4 months ago
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 3 months ago
- ASM Bootkit that patches DSE at boot allowing to load unsigned drivers☆15Aug 24, 2025Updated 6 months ago
- ☆53Mar 26, 2025Updated 11 months ago
- A REALLY Danger Windows Driver, Turn Any threads Ring0!☆13Aug 11, 2025Updated 6 months ago
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆16Jun 10, 2025Updated 8 months ago
- Prevent in-process process termination by patching exit APIs☆63Nov 9, 2025Updated 3 months ago
- KVC enables unsigned driver loading via DSE bypass (g_CiOptions patch, skci.dll hijack, SeCiCallbacks redirection) and PP/PPL manipulatio…☆173Feb 26, 2026Updated last week
- x86-64 pe binary obfuscator☆26Jan 11, 2026Updated last month
- The sequel to Voyager☆97Aug 21, 2024Updated last year
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆25May 7, 2025Updated 9 months ago
- just proof of concept. hooking MmCopyMemory PG safe.☆83Nov 13, 2023Updated 2 years ago
- DMA firmware☆11Nov 14, 2024Updated last year
- Small driver that uses alternative syscalls feature☆18May 9, 2024Updated last year
- Detect suspend you process☆13Jun 7, 2023Updated 2 years ago
- Windows driver mapper via the UEFI☆58Jul 13, 2025Updated 7 months ago
- Inter-binary control flow graphing☆28Feb 25, 2026Updated last week
- Windows kernel ROP-only implant exposing R/W primitives☆42Feb 1, 2026Updated last month
- Hardware Spoofing & VirtualBox-Hardening x64 Bootkit☆18Dec 15, 2022Updated 3 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆84Dec 21, 2022Updated 3 years ago
- Simple and lightweight hypervisor for AMD processors☆44Oct 25, 2025Updated 4 months ago
- UEFI Bootkit with user-mode communication☆116Jun 14, 2025Updated 8 months ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆20Aug 8, 2019Updated 6 years ago
- A custom tool to unpack VMProtect-obfuscated executables and restore the original binary☆31Jul 30, 2025Updated 7 months ago
- Illustrates the concept of return address spoofing, and how it is used.☆14May 13, 2020Updated 5 years ago
- IoCreateDriver Implementation, it can be useful if you're trying to bypass anticheats☆122Dec 4, 2025Updated 3 months ago
- Kernel anti-cheat for protecting software.☆116Oct 2, 2025Updated 5 months ago