SpiralBL0CK / BlackLotus-analysis-stage2-bootkit-rootkit-stage
Z2A-BlackLotus Challenge stage 2 bootkit-rootkit analysis
☆9Updated last year
Related projects: ⓘ
- Experiment with d_olex's firmware and conducting "preboot" attack☆15Updated last year
- Proof-of-Concept for CVE-2024-26218☆46Updated 4 months ago
- Open Keylogger Hardware Implant - USB & PS2 Keyboards☆50Updated last week
- One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel☆43Updated 11 months ago
- Windows KASLR bypass using prefetch side-channel☆64Updated 4 months ago
- ☆27Updated 4 months ago
- ☆24Updated last year
- A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.☆81Updated last year
- One Bootloader to Load Them All - Research materials, Code , Etc.☆47Updated 2 years ago
- Analysis of the vulnerability☆46Updated 7 months ago
- Michelangelo REanimator bootkit and REcon 2023 talk slides/materials☆27Updated 6 months ago
- ☆10Updated 2 years ago
- Here are some of my malware reversing papers that I will be publishing☆30Updated 2 years ago
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆52Updated 5 months ago
- ☆25Updated 10 months ago
- FTDI bricker just for fun - malware POC+hardware hacking CTF☆16Updated this week
- Aplos an extremely simple fuzzer for Windows binaries.☆66Updated 5 months ago
- LPE exploit for CVE-2023-36802☆21Updated 11 months ago
- An issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component☆11Updated last year
- BINARLY Research Tools and PoCs☆10Updated 6 months ago
- OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"☆43Updated 3 months ago
- A payload delivery system which embeds payloads in an executable's icon file!☆72Updated 7 months ago
- ☆17Updated last year
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆92Updated 5 months ago
- using the gpu to hide your payload☆47Updated 2 years ago
- An initial proof of concept of a bootkit based on Cr4sh's DMABackdoorBoot☆56Updated last year
- Exploit targeting NT kernel in 24H2 Windows Insider Preview☆99Updated 4 months ago
- Process injection via native Windows APIs (NTAPIs)☆15Updated 8 months ago
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆38Updated 3 months ago
- Implementation of an export address table protection mitigation, like Export Address Filtering (EAF)☆91Updated last year
- Proof-of-Concept for CVE-2024-21345☆70Updated 4 months ago