Cr4sh / efiXplorer
IDA plugin for UEFI firmware analysis and reverse engineering automation
☆10Updated 2 years ago
Alternatives and similar repositories for efiXplorer:
Users that are interested in efiXplorer are comparing it to the libraries listed below
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆10Updated 6 years ago
- Plugins related to LeechCore☆35Updated last month
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- UEFI bootkit: Hardware Implant. In-Progress☆13Updated 3 years ago
- UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.☆19Updated last year
- Exploit POC for CVE-2024-36877☆46Updated 8 months ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- Win64 UEFI Driver-based tool for unrestricted memory R/W☆26Updated 3 years ago
- LOJAX ROOTKIT (UEFI) +PDF Included[x]☆32Updated 2 years ago
- Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).☆43Updated 2 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- ☆21Updated 3 years ago
- ☆22Updated 4 years ago
- NT AUTHORITY\SYSTEM☆39Updated 4 years ago
- Different tools for Microsoft Hyper-V researching☆52Updated 10 months ago
- Another UEFI runtime bootkit☆29Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆33Updated last year
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆60Updated 8 months ago
- ASUSTeK AsIO3 I/O driver unlock☆21Updated 4 years ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆82Updated 4 years ago
- Example payload for CVE-2022-21894☆12Updated last year
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆18Updated last year
- Overwrite MBR and add own custom message☆17Updated 5 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- 2022 Updated Kernelmode-Code☆31Updated last year
- Another Portable Executable files analysing stuff☆21Updated 13 years ago
- One Bootloader to Load Them All - Research materials, Code , Etc.☆51Updated 2 years ago
- SMM UEFI module and client for UMD privilege escalation☆42Updated last year
- A packed & protected Module Loader and more, for 64-bit Windows☆29Updated 4 years ago