SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.
☆123Oct 15, 2024Updated last year
Alternatives and similar repositories for Deadwing
Users that are interested in Deadwing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to dump EFI runtime drivers.☆39Feb 23, 2024Updated 2 years ago
- Small driver that uses alternative syscalls feature☆18May 9, 2024Updated 2 years ago
- Another UEFI runtime bootkit☆36May 8, 2023Updated 3 years ago
- partially disable patchguard up to win11 21H2☆21Jun 3, 2024Updated 2 years ago
- List UEFI Configuration Tables☆14May 23, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆126Dec 8, 2024Updated last year
- SMM UEFI module and client for UMD privilege escalation☆72May 29, 2025Updated last year
- ☆293Sep 2, 2025Updated 10 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- manual map unsigned driver over signed memory☆231Apr 11, 2024Updated 2 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- ☆38Sep 26, 2024Updated last year
- ☆14Mar 13, 2023Updated 3 years ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆444Apr 19, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- alternative smm driver for ryzen motherboards☆201Oct 12, 2024Updated last year
- EFI bootkit for loading unsigned drivers☆41Jun 28, 2024Updated 2 years ago
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Mar 15, 2025Updated last year
- simple zero-dependency timer implementation☆12May 24, 2023Updated 3 years ago
- ☆48Jul 7, 2024Updated 2 years ago
- Kernel Level NMI Callback Blocker☆186Apr 23, 2026Updated 2 months ago
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities☆420Feb 26, 2025Updated last year
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆38Sep 22, 2024Updated last year
- Windows kernel driver demonstrating kernel-to-usermode communication via shared memory sections☆109Apr 24, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- nmi stackwalking + module verification☆172Dec 28, 2023Updated 2 years ago
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆23Feb 19, 2023Updated 3 years ago
- Hypervisor-based debugger for AMD processors☆67May 13, 2024Updated 2 years ago
- Modular and extensible library for Virtual Machine Introspection☆148Jun 29, 2026Updated last week
- Unicorn Engine port for UEFI firmware☆53Mar 25, 2025Updated last year
- Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks☆373Nov 3, 2023Updated 2 years ago
- Windows kernel drivers simple HTTP library for modern C++☆40Jul 12, 2018Updated 7 years ago
- VMProtect 2.x-3.x x64 Import Deobfuscator☆498Oct 22, 2025Updated 8 months ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆318May 31, 2023Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- An x86-64 Code Virtualizer☆323Sep 26, 2024Updated last year
- Runtime smm module loader☆39Jan 12, 2023Updated 3 years ago
- simple trampoline hooking PoC☆15Nov 8, 2023Updated 2 years ago
- Example of using Windows Platform Binary Table (WPBT)☆28Jul 9, 2023Updated 3 years ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆159Jun 11, 2024Updated 2 years ago
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆227Dec 16, 2022Updated 3 years ago
- A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.☆115Mar 28, 2024Updated 2 years ago