Alternatives and similar repositories for bitlocker-attacks

Users that are interested in bitlocker-attacks are comparing it to the libraries listed below

• NoobieDog / TPM-Sniffing
  A repo for TPM sniffing greatness
  ☆229Updated last month
• lkarlslund / nifo
  Nuke It From Orbit - remove AV/EDR with physical access
  ☆259Updated 6 months ago
• NoInitRD / Memory-Dump-UEFI
  Memory-Dump-UEFI is a UEFI application for dumping the contents of RAM.
  ☆154Updated 3 months ago
• Wack0 / CVE-2022-21894
  baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
  ☆329Updated last year
• en4rab / SPITkey
  Decrypt the bitlocker FVEK for a bitlocker encrypted drive.
  ☆29Updated 2 weeks ago
• ReversecLabs / bitlocker-spi-toolkit
  Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.
  ☆304Updated 3 years ago
• Banaanhangwagen / WINHELLO2hashcat
  ☆73Updated 3 years ago
• pulpocaminante / Stuxnet
  WMI virus, because funny
  ☆282Updated 4 months ago
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆50Updated 5 years ago
• andigandhi / bitpixie
  bitpixie Proof of Concept - Bitlocker Decryptor
  ☆69Updated last week
• ElliotKillick / operating-system-design-review
  Operating System Design Review: A systemic analysis of modern systems architecture
  ☆314Updated 3 months ago
• airbus-seclab / soxy
  A suite of services (SOCKS, FTP, shell, etc.) over Citrix, VMware Horizon and native Windows RDP virtual channels.
  ☆248Updated this week
• trailofbits / RpcInvestigator
  Exploring RPC interfaces on Windows
  ☆321Updated last year
• securityjoes / AskJOE
  This is a Ghidra script that calls OPENAI to give meaning to decompiled functions
  ☆128Updated 10 months ago
• SafeBreach-Labs / WindowsDowndate
  A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
  ☆668Updated 7 months ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆84Updated last year
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆197Updated 3 months ago
• ergrelet / windiff
  Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …
  ☆345Updated this week
• leludo84 / vol3-linux-profiles
  Volatility3 Linux profiles
  ☆48Updated 3 weeks ago
• blasty / lexmark
  ☆204Updated 7 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆181Updated last year
• MagnetForensics / dumpit-linux
  Memory acquisition for Linux that makes sense.
  ☆198Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆394Updated last month
• floesen / EventLogCrasher
  ☆189Updated last year
• Abyss-W4tcher / volatility2-profiles
  Collection of Volatility2 profiles, generated against Linux kernels.
  ☆43Updated this week
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆406Updated 2 months ago
• hacking-support / DVUEFI
  Damn Vulnerable UEFI
  ☆283Updated 9 months ago
• hardenedvault / bootkit-samples
  Bootkit sample for firmware attack
  ☆256Updated 6 months ago
• jonny-jhnson / ETWInspector
  ☆169Updated 2 months ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆213Updated 2 years ago