Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).
☆56Feb 28, 2024Updated 2 years ago
Alternatives and similar repositories for SubGetVariable
Users that are interested in SubGetVariable are comparing it to the libraries listed below
Sorting:
- just proof of concept. hooking MmCopyMemory PG safe.☆82Nov 13, 2023Updated 2 years ago
- POC Hook of nt!HvcallCodeVa☆54May 8, 2023Updated 2 years ago
- ☆148Jan 24, 2024Updated 2 years ago
- Libraries written in inline assembly☆19Aug 7, 2023Updated 2 years ago
- Guide for patching AMI Aptio V UEFI firmware to circumvent Secure Boot checks☆132Jun 20, 2024Updated last year
- A simple example how to decrypt kernel debugger data block☆32Feb 8, 2021Updated 5 years ago
- remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…☆10Aug 23, 2024Updated last year
- nmi stackwalking + module verification☆162Dec 28, 2023Updated 2 years ago
- Intercepting DeviceControl via WPP☆138Nov 18, 2019Updated 6 years ago
- ☆27Oct 18, 2023Updated 2 years ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆153Jun 11, 2024Updated last year
- Load your driver like win32k.sys☆258Aug 20, 2022Updated 3 years ago
- My Personal Kernel-Mode Process dumper☆13Feb 18, 2024Updated 2 years ago
- xigmapper is a driver manual mapper that loads your driver before Vanguard, but after critical system infrastructure has been set up, all…☆294Jan 18, 2024Updated 2 years ago
- ☆42Jul 1, 2022Updated 3 years ago
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆103Jun 26, 2023Updated 2 years ago
- A mapper that maps shellcode into loaded large page drivers☆324Apr 26, 2022Updated 3 years ago
- manually map driver for a signed driver memory space☆174Mar 11, 2021Updated 4 years ago
- Shows an example of how to implement VT-d/AMD-Vi on Windows☆163Sep 22, 2023Updated 2 years ago
- ☆14Jul 20, 2023Updated 2 years ago
- Not mine, just saved☆14Nov 12, 2023Updated 2 years ago
- x64 Windows kernel driver mapper, inject unsigned driver using anycall☆203Feb 14, 2024Updated 2 years ago
- driver manual mapper powered by https://github.com/estimated1337/lenovo_exec☆115Dec 28, 2022Updated 3 years ago
- Detect removed thread from PspCidTable.☆75Mar 18, 2022Updated 3 years ago
- Small memory leak PoC that is happening in IopGetDeviceInterfaces☆25Oct 18, 2020Updated 5 years ago
- Disks for DMA☆141Apr 28, 2021Updated 4 years ago
- leproxys pasted ahh driver for his pasted p2c, he also used my source as his base and he thinks he someone☆11Jun 26, 2023Updated 2 years ago
- ☆28Dec 16, 2023Updated 2 years ago
- 从MmPfnData中枚举进程和页目录基址☆207Aug 18, 2023Updated 2 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆314May 31, 2023Updated 2 years ago
- HyperDeceit is the ultimate all-in-one library that emulates Hyper-V for Windows, giving you the ability to intercept and manipulate oper…☆376Jun 3, 2023Updated 2 years ago
- ☆144Dec 10, 2022Updated 3 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆36Dec 17, 2025Updated 2 months ago
- This is a C++ program for Windows to Change Network Adapter's MAC addresses to random value.☆17Aug 29, 2016Updated 9 years ago
- A minimalistic way to spoof return addresses without using exceptions☆17Jul 26, 2022Updated 3 years ago
- modern c++ wrapper around the microsoft portable executable file format☆36Nov 22, 2025Updated 3 months ago
- Allows you to communicate with the kernel mode to manipulate memory in a stealthy way to avoid kernel anticheats.☆172May 8, 2022Updated 3 years ago
- Allows you to parse all messages sent to DbgPrint without any process interaction.☆32Apr 8, 2020Updated 5 years ago
- Lightweight Intel VT-x Hypervisor.☆663Dec 17, 2024Updated last year