Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
☆367Nov 3, 2023Updated 2 years ago
Alternatives and similar repositories for SmmBackdoorNg
Users that are interested in SmmBackdoorNg are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SMM rootkit similar to LoJax or MosaicRegressor☆147Nov 1, 2023Updated 2 years ago
- ☆293Sep 2, 2025Updated 8 months ago
- Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board☆103Oct 21, 2023Updated 2 years ago
- alternative smm driver for ryzen motherboards☆197Oct 12, 2024Updated last year
- PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for li…☆869Mar 7, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- First open source and publicly available System Management Mode backdoor for UEFI based platforms. Good as general purpose playground for…☆627Oct 9, 2023Updated 2 years ago
- UEFI and SMM Assessment Tool☆217Nov 21, 2024Updated last year
- SMM UEFI module and client for UMD privilege escalation☆69May 29, 2025Updated last year
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆148Mar 29, 2021Updated 5 years ago
- Admin to Kernel code execution using the KSecDD driver☆269Apr 19, 2024Updated 2 years ago
- Another UEFI runtime bootkit☆37May 8, 2023Updated 3 years ago
- Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.☆602Aug 2, 2025Updated 9 months ago
- PoC Implementation of a fully dynamic call stack spoofer☆958Jul 20, 2024Updated last year
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆381Jun 3, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- System Management RAM analysis tool☆83Aug 9, 2024Updated last year
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆272Aug 31, 2022Updated 3 years ago
- A small bootkit which does not rely on x64 assembly.☆525Aug 29, 2019Updated 6 years ago
- ☆43Feb 18, 2025Updated last year
- Using Windows' own bootloader as a shim to bypass Secure Boot☆243Jul 17, 2024Updated last year
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- ☆372May 11, 2025Updated last year
- uefi diskless persistence technique + OVMF secureboot bypass☆103Apr 22, 2024Updated 2 years ago
- IDA plugin and loader for UEFI firmware analysis and reverse engineering automation☆1,104May 6, 2026Updated 3 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- PoCs for Kernelmode rootkit techniques research.☆440Mar 25, 2026Updated 2 months ago
- Implementation of Advanced Module Stomping and Heap/Stack Encryption☆227Jul 25, 2023Updated 2 years ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆159Mar 16, 2026Updated 2 months ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆319May 31, 2023Updated 2 years ago
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆246Sep 26, 2023Updated 2 years ago
- UEFI bootkit for driver manual mapping☆595Jan 1, 2024Updated 2 years ago
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆412Jan 11, 2026Updated 4 months ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆11Aug 6, 2018Updated 7 years ago
- baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability☆351Sep 27, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- The Definitive Guide To Process Cloning on Windows☆550Jan 3, 2024Updated 2 years ago
- Load a dynamic library from memory by modifying the native Windows loader☆302May 5, 2026Updated 3 weeks ago
- The research UEFI hypervisor that supports booting an operating system.☆739Aug 15, 2024Updated last year
- Hooking Windows' exception dispatcher to protect process's PML4☆250Jan 24, 2025Updated last year
- Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven☆268Oct 16, 2024Updated last year
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.☆629Jan 2, 2025Updated last year