Alternatives and similar repositories for UEFIBootKit

Users that are interested in UEFIBootKit are comparing it to the libraries listed below

• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆44Updated 7 months ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆30Updated 4 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆34Updated last year
• ASkyeye / CVE-2022-21894-Payload
  Example payload for CVE-2022-21894
  ☆13Updated last year
• Slowerzs / KeyJumper
  ☆46Updated last month
• Cracked5pider / unguard-eat
  havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets
  ☆27Updated 9 months ago
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆36Updated 4 months ago
• exploits-forsale / CVE-2024-26218
  Proof-of-Concept for CVE-2024-26218
  ☆51Updated last year
• mannyfred / MentalTi
  Mentally ill EtwTi parser
  ☆36Updated last month
• hasherezade / flareon2023
  ☆25Updated 6 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• binarly-io / ToolsAndPoCs
  BINARLY Research Tools and PoCs
  ☆36Updated 7 months ago
• rbmm / RtlClone
  ☆38Updated 2 months ago
• Nero22k / Exploits
  Repo with different exploits & PoCs
  ☆64Updated this week
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆29Updated last year
• Invoke-RE / binja-lattice-mcp
  Plugin interface for remote communications with Binary Ninja database and MCP server for interfacing with LLMs.
  ☆32Updated last week
• rad9800 / RansomFS
  ☆30Updated 2 months ago
• MrAle98 / ATDCM64a-LPE
  ☆20Updated 4 months ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆34Updated last year
• alfarom256 / HPHardwareDiagnostics-PoC
  PoC exploit for HP Hardware Diagnostic's EtdSupp driver
  ☆50Updated 2 years ago
• bot984397 / eepy
  ☆30Updated last month
• milankovo / instrlen
  Custom instruction length for hex-rays
  ☆18Updated 4 months ago
• AsuNa-jp / HotkeybasedKeyloggerDetector
  ☆19Updated 2 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆30Updated last year
• lleon1435 / Kernel_VADInjector
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆50Updated last year
• keowu / InstrumentationCallbackToolKit
  A fast method to intercept syscalls from any user-mode process using InstrumentationCallback and detect any process using Instrumentation…
  ☆30Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆56Updated 9 months ago
• rbmm / DirectSysCall
  ☆12Updated last year
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆76Updated 2 weeks ago