Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
☆359Nov 3, 2023Updated 2 years ago
Alternatives and similar repositories for SmmBackdoorNg
Users that are interested in SmmBackdoorNg are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SMM rootkit similar to LoJax or MosaicRegressor☆147Nov 1, 2023Updated 2 years ago
- Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board☆101Oct 21, 2023Updated 2 years ago
- ☆277Sep 2, 2025Updated 6 months ago
- alternative smm driver for ryzen motherboards☆191Oct 12, 2024Updated last year
- PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for li…☆860Mar 7, 2026Updated 3 weeks ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- First open source and publicly available System Management Mode backdoor for UEFI based platforms. Good as general purpose playground for…☆628Oct 9, 2023Updated 2 years ago
- UEFI and SMM Assessment Tool☆215Nov 21, 2024Updated last year
- SMM UEFI module and client for UMD privilege escalation☆67May 29, 2025Updated 10 months ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆146Mar 29, 2021Updated 5 years ago
- Admin to Kernel code execution using the KSecDD driver☆264Apr 19, 2024Updated last year
- Another UEFI runtime bootkit☆37May 8, 2023Updated 2 years ago
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆594Aug 2, 2025Updated 7 months ago
- PoC Implementation of a fully dynamic call stack spoofer☆935Jul 20, 2024Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆380Jun 3, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- System Management RAM analysis tool☆83Aug 9, 2024Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆270Aug 31, 2022Updated 3 years ago
- A small bootkit which does not rely on x64 assembly.☆517Aug 29, 2019Updated 6 years ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆229Jul 17, 2024Updated last year
- ☆42Feb 18, 2025Updated last year
- Finding Truth in the Shadows☆125Jan 26, 2023Updated 3 years ago
- ☆367May 11, 2025Updated 10 months ago
- IDA plugin and loader for UEFI firmware analysis and reverse engineering automation☆1,084Mar 18, 2026Updated last week
- PoCs for Kernelmode rootkit techniques research.☆435Updated this week
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆225Jul 25, 2023Updated 2 years ago
- uefi diskless persistence technique + OVMF secureboot bypass☆98Apr 22, 2024Updated last year
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆160Mar 16, 2026Updated last week
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆317May 31, 2023Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆244Sep 26, 2023Updated 2 years ago
- baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability☆351Sep 27, 2023Updated 2 years ago
- UEFI bootkit for driver manual mapping☆591Jan 1, 2024Updated 2 years ago
- 👓A collection of papers/tools/exploits for UEFI security.☆214Sep 4, 2025Updated 6 months ago
- Load a dynamic library from memory by modifying the native Windows loader☆285Jun 18, 2025Updated 9 months ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆11Aug 6, 2018Updated 7 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆413Jan 11, 2026Updated 2 months ago
- The Definitive Guide To Process Cloning on Windows☆543Jan 3, 2024Updated 2 years ago
- The research UEFI hypervisor that supports booting an operating system.☆723Aug 15, 2024Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆236Jan 24, 2025Updated last year
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆267Oct 16, 2024Updated last year
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year