tandasat/SmmExploit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

tandasat/SmmExploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tandasat/SmmExploit)

Close

tandasat / SmmExploitView on GitHubMore

• External links
• Readme badge

The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.

☆147Mar 29, 2021Updated 5 years ago

Alternatives and similar repositories for SmmExploit

Users that are interested in SmmExploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Cr4sh / Aptiocalypsis

  View on GitHub
  Arbitrary SMM code execution exploit for industry-wide 0day vulnerability in AMI Aptio based firmwares
  ☆77Oct 22, 2016Updated 9 years ago
• tandasat / HelloSmm

  View on GitHub
  This is an instruction to run your own SMM code.
  ☆109Mar 8, 2021Updated 5 years ago
• IOActive / Platbox

  View on GitHub
  UEFI and SMM Assessment Tool
  ☆215Nov 21, 2024Updated last year
• tandasat / UefiVarMonitor

  View on GitHub
  The runtime DXE driver monitoring access to the UEFI variables by hooking the runtime service table.
  ☆147Oct 9, 2020Updated 5 years ago
• tandasat / HelloIommuPkg

  View on GitHub
  The sample DXE runtime driver demonstrating how to program DMA remapping.
  ☆75Dec 27, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• alfarom256 / MinifilterResearch

  View on GitHub
  ☆17Oct 31, 2022Updated 3 years ago
• Cr4sh / SmmBackdoorNg

  View on GitHub
  Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
  ☆358Nov 3, 2023Updated 2 years ago
• Cr4sh / smram_parse

  View on GitHub
  System Management RAM analysis tool
  ☆83Aug 9, 2024Updated last year
• jussihi / SMM-Rootkit

  View on GitHub
  SMM rootkit similar to LoJax or MosaicRegressor
  ☆147Nov 1, 2023Updated 2 years ago
• yardenshafir / CallbackObjectAnalyzer

  View on GitHub
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆38Oct 21, 2020Updated 5 years ago
• HackingThings / SignedUEFIShell

  View on GitHub
  Information about a signed UEFI Shell that can be used when Secure Boot is enabled.
  ☆85Apr 27, 2021Updated 4 years ago
• tandasat / kraft_dinner

  View on GitHub
  Tool to dump UEFI runtime drivers implementing runtime services for Windows
  ☆111Dec 24, 2020Updated 5 years ago
• binarly-io / Vulnerability-REsearch

  View on GitHub
  Binarly Vulnerability Research Advisories
  ☆183Mar 25, 2026Updated 2 weeks ago
• Wack0 / CVE-2022-21894

  View on GitHub
  baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
  ☆351Sep 27, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• REhints / efiXplorer

  View on GitHub
  IDA plugin and loader for UEFI firmware analysis and reverse engineering automation
  ☆1,086Apr 3, 2026Updated last week
• Air14 / SmmLoader

  View on GitHub
  Runtime smm module loader
  ☆38Jan 12, 2023Updated 3 years ago
• connormorley / OuterHaven-UEFI-exploitation-and-detection

  View on GitHub
  A standalone python script leveraging ntdll for UEFI variable enumeration. This uses elements from the "chipsec" toolkit for formatting w…
  ☆10Jul 25, 2023Updated 2 years ago
• tandasat / MiniVisorPkg

  View on GitHub
  The research UEFI hypervisor that supports booting an operating system.
  ☆725Aug 15, 2024Updated last year
• ZEROWyt / Patchguard-2023

  View on GitHub
  ☆24Jul 24, 2023Updated 2 years ago
• tandasat / Hello-VT-rp

  View on GitHub
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆114Mar 28, 2024Updated 2 years ago
• kkent030315 / PageTableInjection

  View on GitHub
  Code Injection, Inject malicious payload via pagetables pml4.
  ☆243Jul 7, 2021Updated 4 years ago
• maxkray13 / Cvc

  View on GitHub
  Communication via callback
  ☆73Oct 9, 2019Updated 6 years ago
• Cr4sh / s6_pcie_microblaze

  View on GitHub
  PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for li…
  ☆865Mar 7, 2026Updated last month
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• ajkhoury / Errata1337

  View on GitHub
  ☆69Dec 17, 2020Updated 5 years ago
• binarly-io / Research_Publications

  View on GitHub
  ☆134Mar 9, 2026Updated last month
• huoji120 / mash_hypervisor

  View on GitHub
  mash hypervisor host pml4
  ☆17Jun 22, 2022Updated 3 years ago
• eclypsium / BIOSDisconnect

  View on GitHub
  ☆21Aug 7, 2021Updated 4 years ago
• yeggor / uefi_retool

  View on GitHub
  A tool for UEFI firmware reverse engineering
  ☆368Dec 28, 2024Updated last year
• Zero-Tang / SimpleWhpDemo

  View on GitHub
  Simple Demo of using Windows Hypervisor Platform
  ☆29Jul 14, 2025Updated 8 months ago
• Sentinel-One / brick

  View on GitHub
  ☆96Jun 18, 2024Updated last year
• bluefrostsecurity / Meltdown-KVA-Shadow-Leak

  View on GitHub
  ☆48Jun 30, 2020Updated 5 years ago
• liba2k / Insomni-Hack-2022

  View on GitHub
  Breaking Secure Boot with SMM
  ☆41Apr 5, 2022Updated 4 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• yardenshafir / SymlinkCallback

  View on GitHub
  A driver that hooks C: volume using symbolic link callback to track all FS access to the volume
  ☆109Apr 24, 2020Updated 5 years ago
• Cr4sh / KernelForge

  View on GitHub
  A library to develop kernel level Windows payloads for post HVCI era
  ☆494May 18, 2021Updated 4 years ago
• yjugl / mitimon

  View on GitHub
  Monitor ETW events for Windows process mitigation policies, with stack traces
  ☆31Oct 7, 2022Updated 3 years ago
• binarly-io / FwHunt

  View on GitHub
  The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware.
  ☆243Mar 12, 2024Updated 2 years ago
• river-li / awesome-uefi-security

  View on GitHub
  👓A collection of papers/tools/exploits for UEFI security.
  ☆215Sep 4, 2025Updated 7 months ago
• zhuhuibeishadiao / PatchGuardResearch

  View on GitHub
  win10 pgContext dynamic dump (btc version)
  ☆112Jan 15, 2020Updated 6 years ago
• can1357 / ByePg

  View on GitHub
  Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI.
  ☆904Nov 21, 2019Updated 6 years ago