Alternatives and similar repositories for UEFIBootKit:

Users that are interested in UEFIBootKit are comparing it to the libraries listed below

• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆44Updated 3 months ago
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆33Updated last week
• ASkyeye / CVE-2022-21894-Payload
  Example payload for CVE-2022-21894
  ☆12Updated last year
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆36Updated last year
• exploits-forsale / CVE-2024-26218
  Proof-of-Concept for CVE-2024-26218
  ☆49Updated 8 months ago
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆47Updated 5 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆30Updated last year
• rbmm / RtlClone
  ☆27Updated 6 months ago
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆48Updated 11 months ago
• jbaines-r7 / dellicious
  Enabled / Disable LSA Protection via BYOVD
  ☆65Updated 3 years ago
• bi-zone / CVE-2024-7965
  This repository contains PoC for CVE-2024-7965. This is the vulnerability in the V8 that occurs only within ARM64.
  ☆44Updated 4 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆24Updated last year
• keowu / InstrumentationCallbackToolKit
  A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…
  ☆25Updated last year
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆26Updated 5 months ago
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆28Updated 2 years ago
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆25Updated last week
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆29Updated last year
• MrAle98 / ATDCM64a-LPE
  ☆15Updated this week
• mannyfred / MentalTi
  Mentally ill EtwTi parser
  ☆24Updated last week
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆44Updated this week
• farinap5 / bitmap4shell
  A (quite) simple steganography algorithm to hide shellcodes within bitmap image.
  ☆21Updated 8 months ago
• rbmm / DirectSysCall
  ☆12Updated last year
• WHots / RosaryAV
  Lightweight Threat Detection System - (Base)
  ☆14Updated 9 months ago
• realoriginal / preboot
  Experiment with d_olex's firmware and conducting "preboot" attack
  ☆15Updated last year
• exploits-forsale / CVE-2024-21345
  Proof-of-Concept for CVE-2024-21345
  ☆70Updated 8 months ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆18Updated last month
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆20Updated 4 years ago
• xct / CVE-2024-27460
  Plantronics Desktop Hub LPE
  ☆37Updated 8 months ago
• Signal-Labs / Hotpatching_PoC
  ☆17Updated last year
• Azvanzed / vmw-logger-rs
  A VMWare logger using built-in backdoor.
  ☆27Updated 3 months ago