Alternatives and similar repositories for PyRW

Users that are interested in PyRW are comparing it to the libraries listed below

• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆48Updated last year
• ch3rn0byl / ANTfs
  ☆44Updated 2 years ago
• HackingThings / SignedUEFIShell
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆85Updated 4 years ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆40Updated 3 years ago
• Wack0 / SecureBootPolicyTools
  Take back control of Windows Code Integrity, no exploits or patching required! Requires that you control your own Platform Key (PK).
  ☆50Updated 3 years ago
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆63Updated 3 years ago
• yardenshafir / conference_talks
  Slides from various conference talks
  ☆37Updated 2 years ago
• m417z / x64dbg-xfg-marker
  An x64dbg plugin which marks XFG call signatures as data
  ☆78Updated 2 years ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆64Updated last month
• tandasat / WPBT-Builder
  The simple UEFI application to create a Windows Platform Binary Table (WPBT) from the UEFI shell.
  ☆120Updated 4 years ago
• ioncodes / rw
  allowing um r/w through km from um ioctl ™
  ☆11Updated 4 years ago
• eset / vulnerability-disclosures
  Repository of vulnerabilities disclosed by ESET
  ☆29Updated 3 years ago
• hfiref0x / AsIo3Unlock
  ASUSTeK AsIO3 I/O driver unlock
  ☆23Updated 4 years ago
• DownWithUp / WHPHook
  Simple DLL and client app that work together to hook all the functions in WinHvPlatform.dll in order to provide logging and introspection…
  ☆20Updated 4 years ago
• sterrasec / genpatch
  genpatch is IDA plugin that generates a python script for patching binary
  ☆37Updated 2 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆20Updated 5 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆60Updated 6 months ago
• connormcgarr / SkBridge
  Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1
  ☆71Updated 5 months ago
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆42Updated 3 months ago
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆46Updated 3 years ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆38Updated 2 years ago
• uf0o / heappo
  Heappo 🦛 is a PyKD based extensions for WinDBG which aids Heap Exploitation
  ☆14Updated 5 years ago
• yardenshafir / MitigationFlagsCliTool
  Command like tool to print mitigation flags for running processes in a memory dump
  ☆47Updated 5 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆73Updated 2 years ago
• KpwnZ / sllvm-obfuscator
  Implementation of sllvm obfuscator
  ☆66Updated 3 years ago
• dr-anoroc / rawccopy
  Command line utility for copying files on NTFS using low level disk access
  ☆40Updated last year
• 3dnow / NtCreateLowBoxToken
  A fully compatible replacement of Windows NT NtCreateLowBoxToken syscall - precisely restored from reverse engineering
  ☆42Updated 7 months ago
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• 0vercl0k / kdmp-parser-rs
  A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
  ☆42Updated last month
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated 2 years ago