Alternatives and similar repositories for uefi-rootkit:

Users that are interested in uefi-rootkit are comparing it to the libraries listed below

• pRain1337 / Hermes
  SMM UEFI module and client for UMD privilege escalation
  ☆42Updated last year
• xsh3llsh0ck / ResilienceKit
  Another UEFI runtime bootkit
  ☆29Updated last year
• xsh3llsh0ck / MilkBox
  Tool to dump EFI runtime drivers.
  ☆35Updated last year
• ekknod / efi-monitor
  just proof of concept. hooking MmCopyMemory PG safe.
  ☆67Updated last year
• senko37 / drvload-bootkit
  EFI bootkit for loading unsigned drivers
  ☆17Updated 9 months ago
• xsh3llsh0ck / Deadwing
  SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.
  ☆85Updated 6 months ago
• backengineering / Voyager
  A Hyper-V Hacking Framework For Windows 10 x64 (AMD & Intel)
  ☆59Updated last year
• xsh3llsh0ck / Calamity
  Example of using Windows Platform Binary Table (WPBT)
  ☆20Updated last year
• x0reaxeax / rwlazer64
  Win64 UEFI Driver-based tool for unrestricted memory R/W
  ☆26Updated 3 years ago
• ekknod / SubGetVariable
  Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).
  ☆50Updated last year
• BeneficialCode / KReClassEx
  Kernel ReClassEx
  ☆61Updated last year
• ekknod / MouseClassServiceCallbackTrick
  ☆53Updated 2 years ago
• Sinclairq / tp-emulator
  A basic 100 loc CPU emulator using the existing code of ntoskrnl.exe
  ☆69Updated last year
• synctop / tpm-mmio
  Using MMIO (Memory-Mapped I/O) to read TPM 2.0 public Endorsement Key.
  ☆40Updated 10 months ago
• cutecatsandvirtualmachines / DmaProtect
  Shows an example of how to implement VT-d/AMD-Vi on Windows
  ☆106Updated last year
• GetRektBoy724 / KPDB
  Windows PDB parser for kernel-mode environment.
  ☆95Updated 2 years ago
• LowLevelSys / physmem_remapper
  ☆22Updated 5 months ago
• jonomango / nohv
  Kernel driver for detecting Intel VT-x hypervisors.
  ☆182Updated last year
• brew02 / BudgetEPT
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆37Updated 6 months ago
• cutecatsandvirtualmachines / DDMA
  Disk based DMA for ATA and SCSI
  ☆23Updated last year
• Oliver-1-1 / SmmInfect
  ☆180Updated 3 weeks ago
• Vasie1337 / sharedsection-driver
  Driver shared section communication
  ☆48Updated last month
• gmh5225 / ida-find-.data-ptr
  A simple ida python script to find .data ptr
  ☆51Updated last year
• DErDYAST1R / NMICallbackBlocker2
  This is a POC Test project for INTEL CPUs on blocking NMI Entries through the IDT Handler.
  ☆44Updated 6 months ago
• SamuelTulach / SecureFakePkg
  Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it's running with se…
  ☆162Updated 3 years ago
• kkent030315 / anyvtop
  x64 Windows implementation of virtual-address to physical-address translation
  ☆40Updated 3 years ago
• SamuelTulach / PatchBoot
  Guide for patching AMI Aptio V UEFI firmware to circumvent Secure Boot checks
  ☆109Updated 10 months ago
• li4321 / baker
  ☆29Updated 3 months ago
• zer0condition / GDRVLib
  Virtual and physical memory hacking library using gigabyte vulnerable driver
  ☆71Updated 2 years ago
• donnaskiez / nmi
  nmi stackwalking + module verification
  ☆114Updated last year