Cr4sh / fwexpl
PC firmware exploitation tool and library
☆244Updated 2 years ago
Related projects: ⓘ
- PEI stage backdoor for UEFI compatible firmware☆206Updated 3 years ago
- Some scripts for IDA Pro to assist with reverse engineering EFI binaries☆285Updated 5 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆420Updated 6 years ago
- CHIPSEC module that exploits UEFI boot script table vulnerability☆132Updated 8 years ago
- A tool for UEFI firmware reverse engineering☆318Updated last year
- Automatically exported from code.google.com/p/ioctlfuzzer☆156Updated 9 years ago
- UEFI bootkit☆236Updated 11 years ago
- Some scripts for IDA Pro to assist with reverse engineering EFI binaries☆71Updated 9 years ago
- Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw☆135Updated 7 years ago
- An IDA plugin to improve (U)EFI reversing☆146Updated 7 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆177Updated 3 years ago
- Hypervisor-based debugger☆185Updated 3 years ago
- An analysis of the Warbird virtual-machine protection for the CI!g_pStore☆217Updated 6 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆350Updated 4 years ago
- Python scripts for reverse engineering.☆178Updated 3 years ago
- ☆115Updated 3 years ago
- Intel Management Engine firmware loader plugin for IDA☆90Updated 7 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆131Updated 8 years ago
- PEDA-like debugger UI for WinDbg☆198Updated 5 months ago
- ☆193Updated this week
- The runtime DXE driver monitoring access to the UEFI variables by hooking the runtime service table.☆136Updated 3 years ago
- Conference slides and White-papers☆355Updated 4 years ago
- A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3☆284Updated 5 years ago
- Incident Response & Digital Forensics Debugging Extension☆367Updated 5 years ago
- The history of Windows Internals via symbols.☆175Updated 2 years ago
- IDA Sploiter is a plugin for Hex-Ray's IDA Pro disassembler designed to enhance IDA's capabilities as an exploit development and vulnerab…☆178Updated 5 years ago
- TDL4 style rootkit to spoof read/write requests to master boot record☆126Updated 6 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆271Updated 5 years ago
- Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins☆133Updated 5 years ago