ekknod / efi-monitorLinks
just proof of concept. hooking MmCopyMemory PG safe.
☆77Updated last year
Alternatives and similar repositories for efi-monitor
Users that are interested in efi-monitor are comparing it to the libraries listed below
Sorting:
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆96Updated 2 years ago
- ☆53Updated 2 years ago
- ☆32Updated 3 years ago
- page table manipulation to gain physical r/w☆44Updated last year
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆103Updated 2 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆51Updated last year
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆71Updated 2 years ago
- ☆83Updated last year
- Discarded Section Manual Map☆69Updated 5 years ago
- A simple MmCopyMemory hook.☆37Updated 3 years ago
- Example driver on how to use SKLib☆56Updated 8 months ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆29Updated last year
- ☆74Updated 2 years ago
- 将驱动映射到会话空间☆35Updated 2 years ago
- driver that communicates using a shared section☆66Updated 4 months ago
- Detect-KeAttachProcess by iterating through all processes as well as checking the context of the thread.☆118Updated 3 years ago
- A lightweight BattlEye emulator of the launcher☆61Updated 2 years ago
- Kernel driver that uses Shared memory to communicate with UserMode☆88Updated 6 years ago
- ☆69Updated 3 years ago
- A simple ida python script to find .data ptr☆51Updated 2 years ago
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆64Updated 7 months ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆74Updated last year
- i stole this from some guys private repo on github☆56Updated 4 years ago
- Mapping your code on a 0x1000 size page☆72Updated 3 years ago
- ☆78Updated last year
- nmi stackwalking + module verification☆128Updated last year
- A library to assist with memory & code protection.☆60Updated last year
- POC usermode <=> kernel communication via ALPC.☆62Updated last year
- The sequel to Voyager☆65Updated 11 months ago
- clearing traces of a loaded driver☆49Updated 3 years ago