Alternatives and similar repositories for Charon

Users that are interested in Charon are comparing it to the libraries listed below

• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆49Updated 3 years ago
• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆47Updated last year
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆32Updated 2 years ago
• kkent030315 / Van1338
  A journal for $6,000 Riot Vanguard bounty.
  ☆65Updated 2 years ago
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆23Updated 4 years ago
• benheise / bootkit
  UEFI bootkit: Hardware Implant. In-Progress
  ☆16Updated 3 years ago
• Tserith / Parasite
  Compact MBR Bootkit for Windows
  ☆54Updated 3 years ago
• ASkyeye / CVE-2022-21894-Payload
  Example payload for CVE-2022-21894
  ☆15Updated 2 years ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated last year
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆35Updated 3 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 7 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆55Updated last month
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆77Updated 2 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆59Updated 3 months ago
• r0keb / MunIntel
  kASLR bypass technique on Intel CPUs.
  ☆30Updated 5 months ago
• alfarom256 / drivers_and_shit
  ☆59Updated 3 years ago
• 0vercl0k / KEPaboo
  Neutralize KEPServerEX anti-debugging techniques
  ☆32Updated 2 years ago
• alal4465 / HeavensGateHook
  Hooking Heavens Gate in a weekend
  ☆13Updated 3 years ago
• HackingThings / SignedUEFIShell
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆83Updated 4 years ago
• alfarom256 / MinifilterResearch
  ☆16Updated 3 years ago
• NewWorldComingSoon / llvm-msvc-windows-driver-template
  Windows kernel driver template for cmkr and llvm-msvc.
  ☆34Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆29Updated 3 years ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆32Updated 3 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆42Updated 5 years ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆77Updated 2 years ago
• Anal-Repair / gigabyte_gdrv3_exploit
  Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.
  ☆17Updated 2 years ago
• un4ckn0wl3z / PCIE-Detector
  Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
  ☆35Updated last year
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆57Updated 2 years ago