b-irb / PigPEILinks
PEIM (UEFI) bootkit targeting OVMF (EDK2)
☆35Updated last year
Alternatives and similar repositories for PigPEI
Users that are interested in PigPEI are comparing it to the libraries listed below
Sorting:
- PDB Rewriting Rust Library☆24Updated last year
- A VMWare logger using built-in backdoor.☆30Updated 9 months ago
- A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.☆37Updated 5 months ago
- Rust library for lifting raw binary data to LLVM IR☆55Updated 2 weeks ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆46Updated 2 months ago
- Report and exploit of CVE-2024-21305.☆36Updated last year
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆85Updated 2 years ago
- Generate a PDB file given the old PDB file and an address mapping☆48Updated 4 months ago
- Sample Rust crate used to implement a VBS enclave in Rust☆35Updated last month
- Windows Minidump loader for Ghidra☆29Updated 2 years ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆126Updated last month
- ☆91Updated last year
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆73Updated last year
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆64Updated 2 years ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- Binary Ninja plugin to perform automated analysis of Windows drivers☆17Updated 5 years ago
- A minimalistic logger for Windows Kernel Drivers.☆24Updated last year
- A few examples of how to trap virtual memory access on Windows.☆32Updated 7 months ago
- A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.☆94Updated 9 months ago
- A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.☆30Updated 2 years ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆43Updated 8 months ago
- Cargo subcommand to build a crate into shellcode☆26Updated 11 months ago
- Rust bindings for VMProtect.☆26Updated last year
- IDA plugin to recover source code from panic information on rust☆16Updated 2 months ago
- Minimalistic Windows Kernel Allocator.☆49Updated 10 months ago
- x86-64 virtualizing obfuscator written in Rust☆79Updated last year
- Native Rust bindings for @horsicq's Detect-It-Easy☆15Updated 6 months ago
- Report and exploit of CVE-2023-36427☆90Updated last year
- A thin introspection hypervisor framework that allows for low level resource manipulation.☆13Updated last year
- WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware☆46Updated 3 years ago