Cr4sh / smram_parse
System Management RAM analysis tool
☆74Updated 6 months ago
Alternatives and similar repositories for smram_parse:
Users that are interested in smram_parse are comparing it to the libraries listed below
- Arbitrary SMM code execution exploit for industry-wide 0day vulnerability in AMI Aptio based firmwares☆64Updated 8 years ago
- EFI DXE Emulator and Interactive Debugger☆89Updated 4 years ago
- EFI DXE Emulator and Interactive Debugger☆82Updated 4 years ago
- Some scripts for IDA Pro to assist with reverse engineering EFI binaries☆73Updated 9 years ago
- Elevation of privilege detector based on HyperPlatform☆120Updated 7 years ago
- Kernel Address Space Layout Randomization (KASLR) Recovery Software☆98Updated 8 years ago
- This is an instruction to run your own SMM code.☆101Updated 3 years ago
- The sample DXE runtime driver demonstrating how to program DMA remapping.☆58Updated last year
- Hypervisor-based debugger☆186Updated 4 years ago
- IDA plugin for extending UEFI reverse engineering capabilities☆58Updated 3 years ago
- IntelVT-X nice feature -> tool☆94Updated 10 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆107Updated last year
- ☆74Updated 4 years ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆80Updated 5 years ago
- Python module for platform, iospace and physmem inspection☆23Updated 4 years ago
- VMX intrinsics plugin for Hex-Rays decompiler☆70Updated 5 years ago
- CansecWest2016 - Getting Physical: Extreme Abuse of Intel Based Paging Systems☆27Updated 8 years ago
- Intel Management Engine firmware loader plugin for IDA☆90Updated 7 years ago
- Making Type Info Library (TIL) file for Apache modules☆54Updated 3 years ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆135Updated 3 years ago
- kernel pool windbg extension☆80Updated 9 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆72Updated 5 years ago
- ☆51Updated 3 years ago
- Virtualization detection through speculative execution PoCs and papers☆67Updated 6 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆52Updated 6 years ago
- VMCS Auditor provides almost all of Intel's VMCS Layout checklist based on Bochs Emulator.☆32Updated 6 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 9 years ago
- ☆33Updated 3 years ago
- A branch-monitor-based solution for process monitoring.☆131Updated 5 years ago
- Function signature matching and signature generation plugin for Binary Ninja☆70Updated 5 months ago