SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.
☆119Oct 15, 2024Updated last year
Alternatives and similar repositories for Deadwing
Users that are interested in Deadwing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to dump EFI runtime drivers.☆39Feb 23, 2024Updated 2 years ago
- Small driver that uses alternative syscalls feature☆18May 9, 2024Updated 2 years ago
- Another UEFI runtime bootkit☆37May 8, 2023Updated 3 years ago
- partially disable patchguard up to win11 21H2☆20Jun 3, 2024Updated last year
- List UEFI Configuration Tables☆14May 23, 2024Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory☆127Dec 8, 2024Updated last year
- SMM UEFI module and client for UMD privilege escalation☆69May 29, 2025Updated last year
- ☆293Sep 2, 2025Updated 8 months ago
- A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.☆78Mar 29, 2025Updated last year
- manual map unsigned driver over signed memory☆228Apr 11, 2024Updated 2 years ago
- Create stealthy, inline, EPT-like hooks using SMAP and SMEP☆64Oct 19, 2024Updated last year
- ☆38Sep 26, 2024Updated last year
- ☆14Mar 13, 2023Updated 3 years ago
- Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!☆435Apr 19, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- alternative smm driver for ryzen motherboards☆197Oct 12, 2024Updated last year
- EFI bootkit for loading unsigned drivers☆41Jun 28, 2024Updated last year
- bypassing intel txt's tboot integrity checks via coreboot shim☆83Mar 15, 2025Updated last year
- simple zero-dependency timer implementation☆12May 24, 2023Updated 3 years ago
- ☆48Jul 7, 2024Updated last year
- Kernel Level NMI Callback Blocker☆176Apr 23, 2026Updated last month
- Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities☆413Feb 26, 2025Updated last year
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆39Sep 22, 2024Updated last year
- nmi stackwalking + module verification☆169Dec 28, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Windows kernel driver demonstrating kernel-to-usermode communication via shared memory sections☆106Apr 24, 2026Updated last month
- An advanced DKOM for drivers with "DRIVER_OBJECT"☆23Feb 19, 2023Updated 3 years ago
- Hypervisor-based debugger for AMD processors☆66May 13, 2024Updated 2 years ago
- Modular and extensible library for Virtual Machine Introspection☆138Updated this week
- Unicorn Engine port for UEFI firmware☆52Mar 25, 2025Updated last year
- Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks☆367Nov 3, 2023Updated 2 years ago
- Windows kernel drivers simple HTTP library for modern C++☆40Jul 12, 2018Updated 7 years ago
- Runtime smm module loader☆39Jan 12, 2023Updated 3 years ago
- Demo proof of concept for shadow regions, and implementation of HyperDeceit.☆319May 31, 2023Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- An x86-64 Code Virtualizer☆317Sep 26, 2024Updated last year
- simple trampoline hooking PoC☆15Nov 8, 2023Updated 2 years ago
- Example of using Windows Platform Binary Table (WPBT)☆28Jul 9, 2023Updated 2 years ago
- A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.☆113Mar 28, 2024Updated 2 years ago
- Unknowncheats Magically Optimized Tidy Mapper using nvaudio☆155Jun 11, 2024Updated last year
- Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…☆220Dec 16, 2022Updated 3 years ago
- x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration☆395Jul 6, 2022Updated 3 years ago