Skip to content
/ SubGetVariable Public

Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).

46 stars 18 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ekknod/SubGetVariable

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
Client
Client
 
 
EFI
EFI
 
 
README.md
README.md
 
 

Repository files navigation

SubGetVariable

Infects DXE bios image with backdoor before booting the system.
this backdoor can execute kernel code directly from your C++ project.

System Requirement

AMD motherboard is most likely required.

Hello World

#include "km.h"
std::vector km::global_export_list;
NTOSKRNL_EXPORT(PsGetCurrentProcess);
NTOSKRNL_EXPORT(PsGetCurrentProcessId);

int main(void)
{
	if (!km::initialize())
	{
		return 0;
	}

	LOG("current process: %llx\n", km::call(PsGetCurrentProcess));
	LOG("current process id: %lld\n", km::call(PsGetCurrentProcessId));
}

About

Old project (2020) reformed. Modifies gRT->GetVariable sub function from EFI_APPLICATION. Tested on Win10 22H2 (AMD).

Resources

Readme
Activity

Stars

46 stars

Watchers

5 watching

Forks

18 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages