Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications
☆22Mar 28, 2025Updated 11 months ago
Alternatives and similar repositories for measured_boot_poc
Users that are interested in measured_boot_poc are comparing it to the libraries listed below
Sorting:
- Simple and lightweight hypervisor for AMD processors☆44Oct 25, 2025Updated 4 months ago
- WinDbg plugin to trace module transitions from a debugged driver.☆47Dec 22, 2025Updated 3 months ago
- Tracks cross references and allows fast viewing of pseudocode between references☆13Mar 10, 2025Updated last year
- Header-only C++ library for producing PE files.☆36Jun 17, 2023Updated 2 years ago
- A rust proof of concept to demonstrate registry overwriting via RegRestoreKey using the Offline Registry Library☆24Nov 13, 2025Updated 4 months ago
- Three different shellcode techniques on the Windows Kernel☆15Apr 8, 2025Updated 11 months ago
- ☆16Oct 31, 2021Updated 4 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆83Dec 21, 2022Updated 3 years ago
- A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread☆32Sep 24, 2025Updated 5 months ago
- An example of an external LLVM plugin module transform pass for the latest versions.☆14Oct 21, 2025Updated 5 months ago
- DRM Library for Windows (x64) in C++☆29Oct 15, 2025Updated 5 months ago
- ☆14Jan 7, 2023Updated 3 years ago
- Plugins for Scylla☆20Sep 14, 2011Updated 14 years ago
- ☆54Mar 26, 2025Updated 11 months ago
- An UWP Client for e-hentai.org☆10May 22, 2018Updated 7 years ago
- Simple single file header for creating zero imports drivers. Can be useful for bypassing forensic memory analysis performed by anticheats…☆19Jun 10, 2025Updated 9 months ago
- UEFI Bootkit Framework that attacks boot-time Code Integrity☆120Mar 15, 2026Updated last week
- ☆17May 7, 2025Updated 10 months ago
- Kernel anti-cheat for protecting software.☆116Oct 2, 2025Updated 5 months ago
- Fluently detect security measures in software.☆32Oct 26, 2025Updated 4 months ago
- Minimal rust wrapper for Karabiner-DriverKit-VirtualHIDDevice☆16Updated this week
- Disable NMI Callbacks with Kernelmode Driver☆18Mar 15, 2023Updated 3 years ago
- x64dbg plugin for cleaning Themida Mutation Assembly codes.☆18May 14, 2025Updated 10 months ago
- Generic Unity IL2CPP Internal DLL template (includes kiero, imgui, il2cpp resolver etc)☆26Mar 24, 2023Updated 2 years ago
- A demonstration of hooking into the VMProtect-2 virtual machine☆24Nov 9, 2023Updated 2 years ago
- Public version of my banana shooter cheat☆17Mar 22, 2023Updated 2 years ago
- hijacks the discord overlay and draws imgui inside of it while remaining flagless due to the discord overlay devs being retarded☆22Apr 29, 2025Updated 10 months ago
- Windows Kernel Security: Memory Integrity Verification with Disk Verification of ntoskrnl.exe☆27Mar 23, 2025Updated 11 months ago
- Sons of the forest internal cheat☆20Nov 1, 2023Updated 2 years ago
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆28Mar 11, 2020Updated 6 years ago
- Here you can find some vulnerable Windows Kernel Drivers☆13Feb 21, 2025Updated last year
- Dll injection through code page id modification in registry. Based on jonas lykk research☆17Jun 18, 2022Updated 3 years ago
- Small user-mode utility for identifying and determining CPU features☆20Nov 22, 2018Updated 7 years ago
- Binary rewriter for 64-bit PE files.☆102Feb 5, 2024Updated 2 years ago
- IAT-Obfuscation to make static analysis of executable harder.☆44Sep 6, 2021Updated 4 years ago
- A runtime for developing large-scale and complex shellcode.☆22Mar 3, 2026Updated 2 weeks ago
- ☆30Updated this week
- 驱动级鼠标和键盘模拟 | Driver-level mouse and keyboard simulation based on loki-hidriver☆20Feb 19, 2025Updated last year
- Slides for COM Hijacking AV/EDR Talk on 38c3☆75Jan 3, 2025Updated last year