ekknod / efi-monitorLinks
just proof of concept. hooking MmCopyMemory PG safe.
☆77Updated last year
Alternatives and similar repositories for efi-monitor
Users that are interested in efi-monitor are comparing it to the libraries listed below
Sorting:
- A basic demonstration of directly overwriting paging structures for physical memory r/w and interprocess memory copy☆98Updated 2 years ago
- ☆55Updated 2 years ago
- ☆32Updated 3 years ago
- A simple MmCopyMemory hook.☆37Updated 3 years ago
- Virtual and physical memory hacking library using gigabyte vulnerable driver☆72Updated 2 years ago
- Reverse Engineering a signed kernel driver packed and virtualized with VMProtect 3.6☆106Updated 2 years ago
- Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).☆53Updated last year
- Discarded Section Manual Map☆69Updated 5 years ago
- Library to manipulate drivers that expose a physical memory read/write primitive.☆30Updated last year
- page table manipulation to gain physical r/w☆44Updated last year
- Example driver on how to use SKLib☆54Updated 9 months ago
- ☆83Updated last year
- 将驱动映射到会话空间☆35Updated 2 years ago
- Mapping your code on a 0x1000 size page☆72Updated 3 years ago
- The sequel to Voyager☆70Updated last year
- ☆73Updated 2 years ago
- ☆69Updated 3 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆33Updated last year
- A simple ida python script to find .data ptr☆51Updated 2 years ago
- A lightweight BattlEye emulator of the launcher☆61Updated 2 years ago
- nmi stackwalking + module verification☆131Updated last year
- Kernel driver that uses Shared memory to communicate with UserMode☆90Updated 6 years ago
- clearing traces of a loaded driver☆49Updated 3 years ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆81Updated last year
- ☆42Updated 3 years ago
- ☆52Updated last year
- ☆46Updated 3 years ago
- A intel hypervisor, implementing many virtualization techniques☆51Updated 2 years ago
- UM-KM Communication using registry callbacks☆40Updated 5 years ago
- A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe☆72Updated 2 years ago