Cr4sh / efiXplorer

Related projects: ⓘ

• lslx / BootLoader
  ☆26Updated this week
• Cr4sh / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆10Updated 6 years ago
• ufrisk / LeechCore-plugins
  Plugins related to LeechCore
  ☆29Updated 2 weeks ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆36Updated 2 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆62Updated 2 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆69Updated last year
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆29Updated 5 years ago
• mathisvickie / CVE-2021-21551
  arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
  ☆52Updated 2 years ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆31Updated last year
• pRain1337 / Hermes
  SMM UEFI module and client for UMD privilege escalation
  ☆28Updated last year
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆37Updated 4 years ago
• realoriginal / blacklotus
  A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
  ☆81Updated last year
• NUL0x4C / RecycleBinPersistence
  using the Recycle Bin to insure persistence
  ☆11Updated 2 years ago
• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆42Updated last month
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆30Updated last year
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆19Updated last year
• rbmm / GetPdb
  ☆8Updated 2 months ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆24Updated 2 years ago
• WHots / RosaryAV
  Lightweight Threat Detection System - (Base)
  ☆14Updated 5 months ago
• Lima-X / Win32.Nebula
  A packed & protected Module Loader and more, for 64-bit Windows
  ☆28Updated 3 years ago
• HackingThings / SignedUEFIShell
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆76Updated 3 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆39Updated last week
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆29Updated 5 months ago
• loneicewolf / flame-sourcecode
  UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.
  ☆18Updated 6 months ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 8 years ago
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆9Updated 7 months ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆26Updated 2 years ago
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆19Updated 3 years ago
• loneicewolf / LOJAX
  LOJAX ROOTKIT (UEFI) +PDF Included[x]
  ☆25Updated last year