jussihi / SMM-RootkitLinks
SMM rootkit similar to LoJax or MosaicRegressor
☆126Updated last year
Alternatives and similar repositories for SMM-Rootkit
Users that are interested in SMM-Rootkit are comparing it to the libraries listed below
Sorting:
- SMM UEFI module and client for UMD privilege escalation☆47Updated last month
- Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks☆320Updated last year
- uefi diskless persistence technique + OVMF secureboot bypass☆81Updated last year
- ☆213Updated 2 weeks ago
- A native hypervisor designed for the Windows operating system☆123Updated 4 years ago
- A small bootkit which does not rely on x64 assembly.☆491Updated 5 years ago
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆144Updated 2 years ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆142Updated 4 years ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆173Updated 11 months ago
- Kernel driver for detecting Intel VT-x hypervisors.☆188Updated last year
- Browse Page Tables on Windows (Page Table Viewer)☆210Updated 3 years ago
- Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board☆83Updated last year
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆125Updated 2 years ago
- Load your driver like win32k.sys☆255Updated 2 years ago
- Advanced driver monitoring utility.☆212Updated 2 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆248Updated 2 years ago
- Compact MBR Bootkit for Windows☆52Updated 3 years ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆228Updated 4 years ago
- A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.☆111Updated last year
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆99Updated 4 years ago
- ☆153Updated 5 years ago
- Another UEFI runtime bootkit☆29Updated 2 years ago
- Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999☆219Updated 5 years ago
- Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it's running with se…☆166Updated 3 years ago
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆88Updated 8 months ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆204Updated 4 years ago
- Bypassing PatchGuard on modern x64 systems☆260Updated 2 years ago
- alternative smm driver for ryzen motherboards☆152Updated 8 months ago
- bypassing intel txt's tboot integrity checks via coreboot shim☆70Updated 3 months ago