The first publicly shared complete Windows UEFI bootkit framework for automated Ring0 rootkit deployment and APT emulation
☆142Nov 24, 2025Updated 6 months ago
Alternatives and similar repositories for Abyss
Users that are interested in Abyss are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Automated environment setup for Bootkit & Rootkit development.☆41Aug 9, 2025Updated 10 months ago
- Windows Kernel Rootkit☆66Nov 24, 2025Updated 6 months ago
- A curated compilation of extensive resources dedicated to bootkit and rootkit development.☆220Aug 9, 2025Updated 10 months ago
- [ARCHIVED] Early work on Benthic (Windows Kernel Rootkit).☆59Aug 15, 2025Updated 9 months ago
- [ARCHIVED] Early work on Abyss (Windows UEFI Bootkit).☆41Aug 15, 2025Updated 9 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆24Feb 21, 2016Updated 10 years ago
- ☆70Dec 19, 2024Updated last year
- POC about how to detect windows kernel debug by pool tag.☆13Nov 29, 2023Updated 2 years ago
- ☆37Nov 8, 2024Updated last year
- Patches DSE by swapping both data ptrs located in SeValidateImageHeader && SeValidateImageData☆25Feb 9, 2024Updated 2 years ago
- ☆11Sep 23, 2017Updated 8 years ago
- Repository to gather the BOF files I will be developing☆11Oct 1, 2024Updated last year
- UEFI Bootkit Framework that attacks boot-time Code Integrity☆141Mar 15, 2026Updated 2 months ago
- Proof-of-Concept tool for extracting credential material from protected sessions on modern Windows systems.☆697May 9, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Repository for the DEF CON 33 talk: Kill Chain Reloaded☆83Aug 3, 2025Updated 10 months ago
- A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack☆106May 25, 2026Updated 2 weeks ago
- ☆19Jan 8, 2026Updated 5 months ago
- Poc of using youtube comments for C2 communications☆10Jul 6, 2021Updated 4 years ago
- ☆29Mar 6, 2026Updated 3 months ago
- POC for CVE-2025-54918 and a technical demonstration.☆61Jan 12, 2026Updated 5 months ago
- The tool used to clone the digital signatures of legitimate programs☆59Oct 11, 2025Updated 8 months ago
- open-source rust hack, based on medusa☆30Aug 10, 2023Updated 2 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A tool that supports finding and abusing whitelisted programs to allow arbitrary file writing into the executable folder of Antivirus sof…☆90May 3, 2026Updated last month
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- PIC shellcode (C/C++) development toolkit designed for malware developers.☆128Dec 23, 2025Updated 5 months ago
- Minimalistic HTTP(S) client for the NT kernel☆61Dec 1, 2025Updated 6 months ago
- This repro contains all the code and documentation for the MiniKvm project and the CH9329 controller☆33Jan 27, 2025Updated last year
- Windows Api调用,用来绕过杀软添加用户☆22May 15, 2021Updated 5 years ago
- EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.☆74Nov 17, 2025Updated 6 months ago
- bootkit驱动映射,三环进程注入加载指定模块☆14Oct 8, 2024Updated last year
- Thats it! An Open-Source Windows UEFI Rootkit☆30Jul 19, 2025Updated 10 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- a dumb rpm/wpm example driver☆14Jun 7, 2021Updated 5 years ago
- ☆15Aug 13, 2023Updated 2 years ago
- Use pingser to create client and server based on ICMP Protocol to send and receive custom message content.☆18Dec 7, 2021Updated 4 years ago
- hook detector using emulation and comparing static with dynamic outputs☆17Aug 11, 2023Updated 2 years ago
- ☆23Oct 28, 2020Updated 5 years ago
- Windows hypervisor for Intel x64: defensive host hypervisor for Windows designed to mitigate kernel-level attacks including BYOVD, compat…☆261May 9, 2026Updated last month
- A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial☆16Jun 22, 2019Updated 6 years ago