jussihi / SMM-Rootkit

Related projects ⓘ

Alternatives and complementary repositories for SMM-Rootkit

• pRain1337 / Hermes
  SMM UEFI module and client for UMD privilege escalation
  ☆30Updated last year
• tandasat / SmmExploit
  The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…
  ☆134Updated 3 years ago
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆30Updated last year
• Cr4sh / SmmBackdoorNg
  Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
  ☆279Updated last year
• realoriginal / blacklotus
  A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
  ☆85Updated last year
• tandasat / hvext
  The Windbg extension that implements commands helpful to study Hyper-V on Intel processors.
  ☆130Updated last month
• Tserith / Parasite
  Compact MBR Bootkit for Windows
  ☆44Updated 2 years ago
• Cr4sh / pico_dma
  Autonomous pre-boot DMA attack hardware implant for M.2 slot based on PicoEVB development board
  ☆65Updated last year
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆123Updated 2 years ago
• waleedassar / RestrictedKernelLeaks
  ☆154Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆135Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆107Updated last year
• HackingThings / SignedUEFIShell
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆76Updated 3 years ago
• CaledoniaProject / drivers-binaries
  Exploitable drivers, you know what I mean
  ☆126Updated 7 months ago
• 3intermute / ramiel
  uefi diskless persistence technique + OVMF secureboot bypass
  ☆52Updated 7 months ago
• irql / CVE-2021-31728
  vulnerability in zam64.sys, zam32.sys allowing ring 0 code execution. CVE-2021-31727 and CVE-2021-31728 public reference.
  ☆89Updated 3 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆221Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆74Updated 4 years ago
• Sentinel-One / brick
  ☆89Updated 5 months ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆19Updated last year
• repnz / autochk-rootkit
  Reverse engineered source code of the autochk rootkit
  ☆197Updated 5 years ago
• zer0condition / Demystifying-PatchGuard
  Demystifying PatchGuard is a comprehensive analysis of Microsoft's security feature called PatchGuard, which is designed to prevent unaut…
  ☆106Updated last year
• intel / unicorn-for-efi
  Unicorn Engine port for UEFI firmware
  ☆44Updated 6 months ago
• realoriginal / bootlicker
  A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
  ☆397Updated last year
• arcana-technologies / arcana.elfscan
  ELF binary forensics tool for APT, virus, backdoor and rootkit detection
  ☆45Updated 2 weeks ago
• tandasat / Hello-VT-rp
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆91Updated 7 months ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆85Updated 2 years ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆30Updated 8 months ago
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆163Updated 10 months ago