Alternatives and similar repositories for bootkit-samples:

Users that are interested in bootkit-samples are comparing it to the libraries listed below

• Wack0 / CVE-2022-21894
  baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
  ☆323Updated last year
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆180Updated 3 years ago
• eclypsium / Screwed-Drivers
  "Screwed Drivers" centralized information source for code references, links, etc.
  ☆356Updated 5 years ago
• Cr4sh / SmmBackdoorNg
  Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
  ☆309Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆388Updated last month
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆248Updated last year
• commial / experiments
  Expriments
  ☆453Updated 6 months ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆228Updated 4 months ago
• IOActive / Platbox
  UEFI and SMM Assessment Tool
  ☆188Updated 5 months ago
• TakahiroHaruyama / VDR
  Vulnerable driver research tool, result and exploit PoCs
  ☆192Updated last year
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆251Updated 3 years ago
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆739Updated last year
• memN0ps / redlotus-rs
  Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)
  ☆527Updated last year
• binarly-io / fwhunt-scan
  Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules
  ☆228Updated 3 months ago
• SafeBreach-Labs / Back2TheFuture
  Find patterns of vulnerabilities on Windows in order to find 0-day and write exploits of 1-days. We use Microsoft security updates in ord…
  ☆182Updated 3 years ago
• D4stiny / spectre
  A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.
  ☆700Updated 4 years ago
• janoglezcampos / DeathSleep
  A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementin…
  ☆509Updated 2 years ago
• binarly-io / Vulnerability-REsearch
  Binarly Vulnerability Research Advisories
  ☆171Updated 2 weeks ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆102Updated 8 months ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆221Updated last year
• husseinmuhaisen / Hypervisor
  A comprehensive Hypervisor resources repo
  ☆106Updated 2 months ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆187Updated last year
• binarly-io / FwHunt
  The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware.
  ☆232Updated last year
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆131Updated last year
• connormcgarr / Exploit-Development
  ☆304Updated 3 years ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆633Updated 2 years ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆490Updated 2 months ago
• Dec0ne / HWSyscalls
  HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
  ☆664Updated last year
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆201Updated 3 weeks ago
• waleedassar / RestrictedKernelLeaks
  ☆159Updated 3 years ago