realoriginal / bootlicker
bootlicker: A terribly written but functioning UEFI shellcode bootkit patched into a firmware volume or boot device on the EFI partition
☆18Updated 2 months ago
Alternatives and similar repositories for bootlicker:
Users that are interested in bootlicker are comparing it to the libraries listed below
- A (quite) simple steganography algorithm to hide shellcodes within bitmap image.☆22Updated 11 months ago
- Plantronics Desktop Hub LPE☆37Updated 11 months ago
- ☆38Updated 2 months ago
- ☆39Updated 10 months ago
- Windows AppLocker Driver (appid.sys) LPE☆55Updated 8 months ago
- ☆43Updated last month
- An Obfuscator-LLVM based mingw-w64 toolchain.☆38Updated 3 years ago
- Unpacker for donut shellcode☆17Updated 4 years ago
- ☆20Updated 3 months ago
- CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)☆44Updated 6 months ago
- Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.☆27Updated this week
- Boilerplate to develop raw and truly Position Independent Code (PIC).☆51Updated 3 months ago
- In-memory hiding technique☆49Updated 3 months ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆46Updated last year
- LPE of CVE-2024-26230☆23Updated 7 months ago
- a demo module for the kaine agent to execute and inject assembly modules☆37Updated 7 months ago
- This repo contains EXPs about Vulnerable Windows Driver☆39Updated 11 months ago
- HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion☆51Updated this week
- doesnt work and wont work on it anymore☆10Updated 9 months ago
- ☆59Updated last year
- A few examples of how to trap virtual memory access on Windows.☆29Updated 4 months ago
- Exploiting the KsecDD Windows driver through Server Silos☆67Updated 5 months ago
- Repo with different exploits & PoCs☆64Updated 7 months ago
- Attacking the cleanup_module function of a kernel module☆30Updated 3 weeks ago
- Enabled / Disable LSA Protection via BYOVD☆67Updated 3 years ago
- Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…☆74Updated last week
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆47Updated last year
- Remove WPP calls from hexrays decompiled code☆45Updated 3 weeks ago
- Hooking KPRCB IdlePreselect function to gain execution inside PID 0.☆57Updated 2 weeks ago
- A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …☆48Updated 3 months ago