HackingThings / SignedUEFIShell
Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
☆76Updated 3 years ago
Related projects: ⓘ
- BINARLY Research Tools and PoCs☆10Updated 6 months ago
- ☆128Updated last year
- One Bootloader to Load Them All - Research materials, Code , Etc.☆47Updated 2 years ago
- SMM UEFI module and client for UMD privilege escalation☆28Updated last year
- ☆83Updated this week
- Breaking Secure Boot with SMM☆40Updated 2 years ago
- ☆151Updated 3 years ago
- A UEFI extraction tool☆11Updated 2 years ago
- An x64dbg plugin which marks XFG call signatures as data☆71Updated last year
- The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.☆100Updated 2 years ago
- C# Utilities for Windows Notification Facility☆122Updated 4 months ago
- The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.☆124Updated 3 months ago
- A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.☆81Updated last year
- ☆43Updated 2 years ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆133Updated 3 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆81Updated 2 years ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆113Updated 2 months ago
- ☆19Updated 3 years ago
- ☆89Updated 3 months ago
- Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board☆60Updated 11 months ago
- A collection of tools, source code, and papers researching Windows' implementation of CET.☆72Updated 3 years ago
- Different tools for Microsoft Hyper-V researching☆45Updated 3 months ago
- ☆94Updated 2 years ago
- Helper idapython code for reversing kmdf drivers☆68Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆44Updated last year
- Enabled / Disable LSA Protection via BYOVD☆61Updated 2 years ago
- Static Binary Instrumentation tool for Windows x64 executables☆176Updated last month
- Report and exploit of CVE-2023-36427☆86Updated 9 months ago
- ☆117Updated this week
- Windows kernel PDB data parsed into YAML☆30Updated 8 months ago