gyje / BIOS_RootkitLinks
来自Freebuf评论区,一个UEFI马.
☆47Updated 8 years ago
Alternatives and similar repositories for BIOS_Rootkit
Users that are interested in BIOS_Rootkit are comparing it to the libraries listed below
Sorting:
- ☆27Updated 9 years ago
- Gozi-MBR-rootkit Bootkit Modified☆69Updated 8 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- reversed emet tool☆24Updated 12 years ago
- Exploiting HEVD's WriteWhatWhereIoctlDispatch for LPE on Windows 10 TH2 through RS3 using GDI objects.☆24Updated 7 years ago
- Bootkit for Windows 7☆29Updated 10 years ago
- A minimal tool to extract shellcode from 64-bit PE binaries.☆50Updated 3 years ago
- ☆45Updated 6 years ago
- Windows anti-rootkit library☆39Updated 10 years ago
- exploit termdd.sys(support kb4499175)☆59Updated 5 years ago
- ELF packer/crypter that aims to create hardened and stealthy troyans☆54Updated 3 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆34Updated 6 years ago
- Kernel (Ring0) - SSDT unhook driver☆14Updated 7 years ago
- Code injection via delay load libraries☆35Updated 7 years ago
- User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.☆19Updated 9 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Updated 5 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35Updated 5 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆27Updated 6 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆49Updated 4 years ago
- https://blog.xpnsec.com/windows-warbird-privesc/☆31Updated 7 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- PoC executable packer using resources☆31Updated 8 years ago
- Reverse Windows shell over TLS☆19Updated 9 years ago
- ☆28Updated 9 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 8 years ago
- x86 and x86-64 shellcodes for Windows, Mac OSX, Linux, BSD and Solaris☆15Updated 7 years ago
- Simple tool for unpacking packed/protected malware executables.☆33Updated 13 years ago
- ntoskrnl symbol pdb and undocument structures☆24Updated 7 years ago