jussihi / SMM-RootkitLinks
SMM rootkit similar to LoJax or MosaicRegressor
☆130Updated last year
Alternatives and similar repositories for SMM-Rootkit
Users that are interested in SMM-Rootkit are comparing it to the libraries listed below
Sorting:
- SMM UEFI module and client for UMD privilege escalation☆50Updated last month
- A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …☆151Updated 2 years ago
- Another UEFI runtime bootkit☆29Updated 2 years ago
- Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks☆326Updated last year
- Advanced driver monitoring utility.☆213Updated 3 years ago
- Compact MBR Bootkit for Windows☆53Updated 3 years ago
- Using Microsoft Warbird to automatically unpack and execute encrypted shellcode in ClipSp.sys without triggering PatchGuard☆248Updated 2 years ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆142Updated 4 years ago
- Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…☆125Updated 2 years ago
- A native hypervisor designed for the Windows operating system☆123Updated 4 years ago
- Using Windows' own bootloader as a shim to bypass Secure Boot☆176Updated last year
- Code Injection, Inject malicious payload via pagetables pml4.☆241Updated 4 years ago
- x64 Windows PatchGuard bypass, register process-creation callbacks from unsigned code☆206Updated 4 years ago
- uefi diskless persistence technique + OVMF secureboot bypass☆85Updated last year
- Browse Page Tables on Windows (Page Table Viewer)☆212Updated 3 years ago
- Exploit MsIo vulnerable driver☆110Updated 3 years ago
- A simple Windows kernel rootkit.☆92Updated 2 months ago
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆89Updated 9 months ago
- Load your driver like win32k.sys☆255Updated 2 years ago
- Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board☆86Updated last year
- Bootkit for Windows Sandbox to disable DSE/PatchGuard.☆295Updated 9 months ago
- Recursive and arbitrary code execution at kernel-level without a system thread creation☆157Updated 2 years ago
- Bypassing PatchGuard on modern x64 systems☆262Updated 2 years ago
- a minimalistic windows hypervisor for amd processors☆122Updated 3 years ago
- bypassing intel txt's tboot integrity checks via coreboot shim☆72Updated 4 months ago
- A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)☆72Updated last year
- Resolve DOS MZ executable symbols at runtime☆95Updated 3 years ago
- APC Internals Research Code☆166Updated 5 years ago
- Achieve arbitrary kernel read/writes/function calling in Hypervisor-Protected Code Integrity (HVCI) protected environments calling withou…☆211Updated 8 months ago
- MemoryRanger protects kernel data and code by running drivers and hosting data in isolated kernel enclaves using VT-x and EPT features. M…☆229Updated 4 years ago