Alternatives and similar repositories for Charon

Users that are interested in Charon are comparing it to the libraries listed below

• HackingThings / SignedUEFIShell
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆85Updated 4 years ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆50Updated 3 years ago
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆34Updated 3 years ago
• benheise / bootkit
  UEFI bootkit: Hardware Implant. In-Progress
  ☆15Updated 3 years ago
• Tserith / Parasite
  Compact MBR Bootkit for Windows
  ☆52Updated 4 years ago
• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆48Updated last year
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆23Updated 4 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆82Updated 10 months ago
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆35Updated 2 years ago
• un4ckn0wl3z / PCIE-Detector
  Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
  ☆38Updated last year
• r0keb / MunIntel
  kASLR bypass technique on Intel CPUs.
  ☆32Updated 8 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆95Updated last year
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆79Updated 3 years ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆78Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆86Updated 5 years ago
• xmmword / x0
  Hardware Spoofing & VirtualBox-Hardening x64 Bootkit
  ☆18Updated 3 years ago
• alfarom256 / drivers_and_shit
  ☆59Updated 3 years ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆70Updated 4 months ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆30Updated 3 years ago
• Air14 / SmmLoader
  Runtime smm module loader
  ☆35Updated 3 years ago
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆127Updated 11 months ago
• backengineering / msrexec
  Elevate arbitrary MSR writes to kernel execution.
  ☆43Updated 2 years ago
• KiFilterFiberContext / warbird-obfuscator
  Integration of Microsoft Warbird with the MSVC compiler
  ☆117Updated 2 years ago
• ch3rn0byl / ANTfs
  ☆44Updated 2 years ago
• archercreat / api-tracer
  api-tracer is a tiny (useless) tracer
  ☆16Updated 2 years ago
• DownWithUp / WarbirdExamples
  An example of how to use Microsoft Windows Warbird technology
  ☆30Updated 2 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆26Updated 2 years ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated 2 years ago