PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
☆67Jul 16, 2025Updated 10 months ago
Alternatives and similar repositories for ShadeBIOS
Users that are interested in ShadeBIOS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆18Feb 29, 2024Updated 2 years ago
- A bunch of shenanigans using functions, VEH and more☆37Jun 8, 2025Updated last year
- porting ntfs-3g for UEFI☆11Oct 21, 2019Updated 6 years ago
- ☆40Jun 23, 2024Updated last year
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆150Jul 17, 2025Updated 10 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Documentation☆41Jun 5, 2026Updated last week
- Red teaming tool to dump LSASS memory, bypassing basic countermeasures.☆248Mar 9, 2026Updated 3 months ago
- Exploit POC for CVE-2024-36877☆49Aug 14, 2024Updated last year
- A simple UEFI bootloader written in C++17 that does not need any third-party support code like Tianocore EDK or gnu-efi; only needs a han…☆22Sep 13, 2022Updated 3 years ago
- POC tool to abuse windows server failover clusters☆56Aug 7, 2025Updated 10 months ago
- ☆111Aug 21, 2024Updated last year
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆168Jul 30, 2025Updated 10 months ago
- Panoptes Endpoint Detection and Response Solution☆44Mar 7, 2026Updated 3 months ago
- b3acon - a mail-based C2 that communicates via an in-memory C# IMAP client dynamically compiled in memory using PowerShell.☆44Apr 21, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Remote DLL Injection with Timer-based Shellcode Execution☆214Jul 18, 2025Updated 10 months ago
- Tiny Regular Expression Matcher☆10May 23, 2019Updated 7 years ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆62Feb 4, 2026Updated 4 months ago
- Extendable Python script handler for automating penetration testing.☆39Mar 3, 2023Updated 3 years ago
- A tool designed to hook into Windows applications and output named (and anonymous?) pipe traffic.☆17Feb 27, 2024Updated 2 years ago
- Source code and examples for PassiveAggression☆64Jun 6, 2024Updated 2 years ago
- ☆30Jun 18, 2025Updated 11 months ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆32Jan 13, 2026Updated 5 months ago
- A set of classes and command line tools that work with system firmware tables (ACPI, SMBIOS)☆26Oct 13, 2016Updated 9 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆53May 16, 2025Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆134Oct 4, 2024Updated last year
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆443Jun 27, 2025Updated 11 months ago
- ☆20Dec 16, 2024Updated last year
- Stage 1: Sensitive Email/Chat Classification for Adversary Agent Emulation (espionage). This project is meant to extend Red Reaper v1 whi…☆41Aug 22, 2024Updated last year
- Stealthy .NET assembly loading using AssemblyNative::LoadFromBuffer☆58Mar 22, 2026Updated 2 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆135Aug 23, 2025Updated 9 months ago
- Windows Network File System Remote exploit for CVE-2022-30136☆15Jul 11, 2023Updated 2 years ago
- MUSL libc port for UEFI☆12Sep 26, 2017Updated 8 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Remove WPP calls from hexrays decompiled code☆56Jan 31, 2026Updated 4 months ago
- POC for CVE-2023-29360☆11Aug 31, 2024Updated last year
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆15Aug 8, 2025Updated 10 months ago
- A critical RCE vulnerability in Windows TCP/IP stack (CVE-2025-26686) leaves sensitive memory unlocked, allowing remote attackers to hija…☆32Sep 16, 2025Updated 8 months ago
- A tool designed for smuggling interactive command and control traffic through legitimate TURN servers hosted by reputable providers such …☆419Updated this week
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆88Mar 6, 2025Updated last year
- Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges☆183Aug 13, 2025Updated 10 months ago