xsh3llsh0ck/Deadwing external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xsh3llsh0ck/Deadwing

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xsh3llsh0ck/Deadwing)

Close

xsh3llsh0ck / DeadwingView on GitHubMore

• External links
• Readme badge

SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.

☆119Oct 15, 2024Updated last year

Alternatives and similar repositories for Deadwing

Users that are interested in Deadwing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• xsh3llsh0ck / MilkBox

  View on GitHub
  Tool to dump EFI runtime drivers.
  ☆39Feb 23, 2024Updated 2 years ago
• xsh3llsh0ck / PicoHook

  View on GitHub
  Small driver that uses alternative syscalls feature
  ☆18May 9, 2024Updated last year
• xsh3llsh0ck / ResilienceKit

  View on GitHub
  Another UEFI runtime bootkit
  ☆37May 8, 2023Updated 2 years ago
• emlinhax / tableflipper

  View on GitHub
  partially disable patchguard up to win11 21H2
  ☆20Jun 3, 2024Updated last year
• tandasat / List-UEFI-Configuration-Tables

  View on GitHub
  List UEFI Configuration Tables
  ☆14May 23, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• SamuelTulach / SecureHack

  View on GitHub
  Cheat for my own game SecureGame which uses a bootkit to hyperjack Hyper-V in order to access VBS enclave's memory
  ☆119Dec 8, 2024Updated last year
• pRain1337 / Hermes

  View on GitHub
  SMM UEFI module and client for UMD privilege escalation
  ☆67May 29, 2025Updated 10 months ago
• Oliver-1-1 / SmmInfect

  View on GitHub
  ☆277Sep 2, 2025Updated 6 months ago
• AmitMoshel1 / PatchGuardEncryptorDriver

  View on GitHub
  A basic implementation of Patch Guard that I implemented, that includes integrity checks and other protection mechanisms I added.
  ☆78Mar 29, 2025Updated last year
• 0mWindyBug / GhostMapperUM

  View on GitHub
  manual map unsigned driver over signed memory
  ☆222Apr 11, 2024Updated last year
• brew02 / BudgetEPT

  View on GitHub
  Create stealthy, inline, EPT-like hooks using SMAP and SMEP
  ☆61Oct 19, 2024Updated last year
• Oliver-1-1 / EtwKeyboardDetection

  View on GitHub
  ☆38Sep 26, 2024Updated last year
• senko37 / drvload-bootkit

  View on GitHub
  EFI bootkit for loading unsigned drivers
  ☆40Jun 28, 2024Updated last year
• ioncodes / rapid-kdbg-hyperv

  View on GitHub
  ☆15Mar 13, 2023Updated 3 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• ekknod / smm

  View on GitHub
  alternative smm driver for ryzen motherboards
  ☆191Oct 12, 2024Updated last year
• can1357 / selene

  View on GitHub
  Kernel-mode Paravirtualization in Ring 2, LLVM based linker, and some other things!
  ☆420Apr 19, 2025Updated 11 months ago
• vmsplit / checkm8

  View on GitHub
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Mar 15, 2025Updated last year
• stuxnet147 / Win-ZeroTimer

  View on GitHub
  simple zero-dependency timer implementation
  ☆12May 24, 2023Updated 2 years ago
• Oliver-1-1 / DumpDriver

  View on GitHub
  ☆48Jul 7, 2024Updated last year
• DErDYAST1R / NmiCallbackBlocker

  View on GitHub
  Kernel Level NMI Callback Blocker
  ☆169Sep 27, 2025Updated 6 months ago
• SamuelTulach / memhv

  View on GitHub
  Minimalistic AMD-V/SVM hypervisor with memory introspection capabilities
  ☆390Feb 26, 2025Updated last year
• un4ckn0wl3z / PCIE-Detector

  View on GitHub
  Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures
  ☆38Sep 22, 2024Updated last year
• vasie1337 / sharedsection-driver

  View on GitHub
  driver that communicates using a shared section
  ☆96Mar 17, 2025Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• donnaskiez / nmi

  View on GitHub
  nmi stackwalking + module verification
  ☆165Dec 28, 2023Updated 2 years ago
• ByteWhite1x1 / Driver-DKOM

  View on GitHub
  An advanced DKOM for drivers with "DRIVER_OBJECT"
  ☆22Feb 19, 2023Updated 3 years ago
• HyperDbg / RedDbg

  View on GitHub
  Hypervisor-based debugger for AMD processors
  ☆63May 13, 2024Updated last year
• vmi-rs / vmi

  View on GitHub
  Modular and extensible library for Virtual Machine Introspection
  ☆121Mar 18, 2026Updated last week
• intel / unicorn-for-efi

  View on GitHub
  Unicorn Engine port for UEFI firmware
  ☆50Mar 25, 2025Updated last year
• Cr4sh / SmmBackdoorNg

  View on GitHub
  Updated version of System Management Mode backdoor for UEFI based platforms: old dog, new tricks
  ☆359Nov 3, 2023Updated 2 years ago
• zhuhuibeishadiao / WskHttp

  View on GitHub
  Windows kernel drivers simple HTTP library for modern C++
  ☆40Jul 12, 2018Updated 7 years ago
• colby57 / VMP-Imports-Deobfuscator

  View on GitHub
  VMProtect 2.x-3.x x64 Import Deobfuscator
  ☆440Oct 22, 2025Updated 5 months ago
• Xyrem / Yumekage

  View on GitHub
  Demo proof of concept for shadow regions, and implementation of HyperDeceit.
  ☆317May 31, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• NullTerminatorr / NullHook

  View on GitHub
  Kernel driver that .text hooks a syscall in dxgkrnl.sys which can be called from our user-mode client to send instructions like rpm/wpm a…
  ☆213Dec 16, 2022Updated 3 years ago
• connorjaydunn / BinaryShield

  View on GitHub
  An x86-64 Code Virtualizer
  ☆311Sep 26, 2024Updated last year
• Air14 / SmmLoader

  View on GitHub
  Runtime smm module loader
  ☆37Jan 12, 2023Updated 3 years ago
• notcpuid / EasyHook

  View on GitHub
  simple trampoline hooking PoC
  ☆15Nov 8, 2023Updated 2 years ago
• xsh3llsh0ck / Calamity

  View on GitHub
  Example of using Windows Platform Binary Table (WPBT)
  ☆27Jul 9, 2023Updated 2 years ago
• tandasat / Hello-VT-rp

  View on GitHub
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆115Mar 28, 2024Updated 2 years ago
• MmMapIoSpace / UCMapper

  View on GitHub
  Unknowncheats Magically Optimized Tidy Mapper using nvaudio
  ☆154Jun 11, 2024Updated last year