EFI bootkit for loading unsigned drivers
☆37Jun 28, 2024Updated last year
Alternatives and similar repositories for drvload-bootkit
Users that are interested in drvload-bootkit are comparing it to the libraries listed below
Sorting:
- UEFI bootkit: Hardware Implant. In-Progress☆15Mar 7, 2022Updated 3 years ago
- simple trampoline hooking PoC☆14Nov 8, 2023Updated 2 years ago
- Another UEFI runtime bootkit☆37May 8, 2023Updated 2 years ago
- ☆42Feb 27, 2022Updated 4 years ago
- SMM UEFI module and client for UMD privilege escalation☆66May 29, 2025Updated 9 months ago
- Stealing signatures from pe files☆15Apr 1, 2025Updated 11 months ago
- SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.☆119Oct 15, 2024Updated last year
- PsSetCreateProcessNotifyRoutine/Ex/Ex2 hook☆12May 30, 2024Updated last year
- Unicorn Engine port for UEFI firmware☆50Mar 25, 2025Updated 11 months ago
- POC of integrity checks☆14May 31, 2021Updated 4 years ago
- ☆16Updated this week
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆16Jun 10, 2025Updated 8 months ago
- Fluently detect security measures in software.☆32Oct 26, 2025Updated 4 months ago
- Intraceptor intercept Windows NT API calls and redirect them to a kernel driver to bypass process/threads handle protections.☆32May 18, 2022Updated 3 years ago
- [POC Detected]Bypass BE Anti Dll Injection (POC/Need Driver)☆17Mar 30, 2020Updated 5 years ago
- POC for your p2c "unique loader build"☆13Jun 28, 2024Updated last year
- Simple PoC for a bootkit written as a UEFI Option ROM Driver☆11Oct 5, 2022Updated 3 years ago
- Compact MBR Bootkit for Windows☆52Jan 13, 2022Updated 4 years ago
- Windows kernel ROP-only implant exposing R/W primitives☆42Feb 1, 2026Updated last month
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated last year
- A lock-free, high-performance logging system designed for Windows kernel drivers☆24Mar 11, 2025Updated 11 months ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆84Dec 21, 2022Updated 3 years ago
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆63May 31, 2021Updated 4 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Jun 30, 2023Updated 2 years ago
- POC kernel driver with hidden system thread☆13May 14, 2024Updated last year
- Program synthesis tools and utilities for LLVM.☆20Jul 6, 2023Updated 2 years ago
- Windows kernel driver that detects hypervisors by probing SIDT/LIDT edge cases, paging/TLB behaviors, privilege transitions, and timing e…☆36Dec 17, 2025Updated 2 months ago
- eac memory sig maker☆14Jun 10, 2021Updated 4 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- Tool to dump EFI runtime drivers.�☆39Feb 23, 2024Updated 2 years ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated 11 months ago
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆111Dec 24, 2020Updated 5 years ago
- ☆22Jan 24, 2023Updated 3 years ago
- ☆16May 22, 2014Updated 11 years ago
- obfuscation that aims to not stand out☆24Mar 27, 2022Updated 3 years ago
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆103Dec 8, 2024Updated last year
- ☆275Sep 2, 2025Updated 6 months ago
- Discarded Section Manual Map☆70Jun 18, 2020Updated 5 years ago
- Demo to show how write ALPC Client & Server using native Ntdll.dll syscalls.☆21Jan 25, 2022Updated 4 years ago