Alternatives and similar repositories for SignedUEFIShell

Users that are interested in SignedUEFIShell are comparing it to the libraries listed below

• waleedassar / RestrictedKernelLeaks
  ☆164Updated 4 years ago
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆58Updated 3 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆93Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆147Updated 2 years ago
• tandasat / SmmExploit
  The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…
  ☆142Updated 4 years ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆62Updated 3 months ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆59Updated 3 months ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆75Updated 3 years ago
• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆47Updated last year
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• tandasat / WPBT-Builder
  The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.
  ☆120Updated 4 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆19Updated 5 years ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆39Updated 3 years ago
• KiFilterFiberContext / warbird-hook
  Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard
  ☆256Updated 3 years ago
• jonaslyk / exploitkitpub
  ☆96Updated 3 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆85Updated 5 years ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆49Updated 3 years ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆97Updated last year
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆125Updated 8 months ago
• liba2k / Insomni-Hack-2022
  Breaking Secure Boot with SMM
  ☆41Updated 3 years ago
• flothrone / smm
  ☆24Updated 4 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆88Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆113Updated 2 years ago
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆122Updated 3 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Updated 5 years ago
• 0vercl0k / lockmem
  This utility allows you to lock every available memory regions of an arbitrary process into its working set.
  ☆69Updated 2 years ago
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆91Updated 4 years ago
• LloydLabs / dearg-thread-ipc-stealth
  A novel technique to communicate between threads using the standard ETHREAD structure
  ☆114Updated 4 years ago
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 3 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆125Updated 4 years ago