Alternatives and similar repositories for bitlocker-attacks

Users that are interested in bitlocker-attacks are comparing it to the libraries listed below

• NoobieDog / TPM-Sniffing
  A repo for TPM sniffing greatness
  ☆227Updated 2 weeks ago
• lkarlslund / nifo
  Nuke It From Orbit - remove AV/EDR with physical access
  ☆259Updated 5 months ago
• Wack0 / CVE-2022-21894
  baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
  ☆327Updated last year
• pulpocaminante / Stuxnet
  WMI virus, because funny
  ☆280Updated 4 months ago
• ReversecLabs / bitlocker-spi-toolkit
  Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.
  ☆302Updated 3 years ago
• NoInitRD / Memory-Dump-UEFI
  Memory-Dump-UEFI is a UEFI application for dumping the contents of RAM.
  ☆154Updated 2 months ago
• ergrelet / windiff
  Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …
  ☆344Updated last month
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆397Updated last month
• SafeBreach-Labs / WindowsDowndate
  A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
  ☆666Updated 7 months ago
• Banaanhangwagen / WINHELLO2hashcat
  ☆73Updated 3 years ago
• awakecoding / wireshark-rdp
  Wireshark RDP resources
  ☆212Updated this week
• blasty / lexmark
  ☆203Updated 7 months ago
• hacking-support / DVUEFI
  Damn Vulnerable UEFI
  ☆277Updated 8 months ago
• ElliotKillick / operating-system-design-review
  Operating System Design Review: A systemic analysis of modern systems architecture
  ☆313Updated 3 months ago
• p0dalirius / ExtractBitlockerKeys
  A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
  ☆369Updated 4 months ago
• vu-ls / Crassus
  ☆572Updated last month
• tyranid / windows-security-internals
  A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.
  ☆177Updated last year
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆196Updated 3 months ago
• securityjoes / AskJOE
  This is a Ghidra script that calls OPENAI to give meaning to decompiled functions
  ☆124Updated 10 months ago
• en4rab / SPITkey
  Decrypt the bitlocker FVEK for a bitlocker encrypted drive.
  ☆28Updated 2 months ago
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆50Updated 5 years ago
• Malandrone / PowerDecode
  PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…
  ☆188Updated last year
• daem0nc0re / PrivFu
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆861Updated 4 months ago
• hackerhouse-opensource / SignToolEx
  Patching "signtool.exe" to accept expired certificates for code-signing.
  ☆280Updated 10 months ago
• hackerhouse-opensource / Marble
  The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
  ☆290Updated last year
• deepinstinct / NoFilter
  ☆299Updated 7 months ago
• advanced-threat-research / GhidraScripts
  Scripts to run within Ghidra, maintained by the Trellix ARC team
  ☆100Updated 2 months ago
• cyberark / PipeViewer
  A tool that shows detailed information about named pipes in Windows
  ☆645Updated 6 months ago
• likvidera / GhidraChatGPT
  Brings the power of ChatGPT to Ghidra!
  ☆151Updated 9 months ago
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆390Updated 3 weeks ago