Samuel Tulach

Projects

Here is a small list of some of my projects. If you want to check out all of my projects, please look at my GitHub.

Note: Direct downloads on this website might be outdated. Always check the repository for the latest version.

RwxMeme
10/23/2022
Simple injector abusing vulnerable driver to overwrite PreviousMode and map dll over rwx section of legit signed module
Download SHA1: aa613194d6fd761587cfc6e59e61b05113bd2730

SecureFakePkg
9/26/2021
Simple EFI runtime driver that hooks GetVariable function and returns data expected by Windows to make it think that it is running with secure boot enabled (faking secure boot)
Download SHA1: f31410867ee9205ab0cd3a5669bd209e04883fbb

LightHook
9/3/2022
Single-header, minimalistic, cross-platform hook library written in pure C
Download SHA1: 23ce720ebf32286ee3f40c2d83479a8f5f4f9e01

meme-rw
6/26/2022
Use vulnerable driver to overwrite single byte in KTHREAD structure to bypass handle permission checks
Download SHA1: 09c17792ea7abdde95f4e0b81564d00a5d0cff76

nullmap
3/10/2023
Using CVE-2023-21768 to manual map kernel mode driver
Download SHA1: b88a078e6611b92ab2d8fb7b532a155a3f1330df

voidmap
2/27/2022
Simple driver manual mapper that exploits CVE-2021-40449 to map unsigned drivers without using any vulnerable driver
Download SHA1: 4d0ca9e08bb53f03e9f5c78ef6c43aa1e94197c6

Rainbow
5/2/2021
EFI bootkit HWID spoofer for Windows utilizing a simple hook chain and clever DKOM to zero out serials
Download SHA1: a16b5545716bbbf51cc5f55bfad0122cf1aa8a67

mutante
6/19/2020
Kernel-mode driver for Windows which spoofs SMBIOS tables (no zeroing) and disk serials
Download SHA1: 6910b0df88b4ff60b600cfe16f3e5da561a34d86

negativespoofer
5/31/2020
Changes identifiable serials in SMBIOS tables before the OS even boots up
Download SHA1: 7fad2ed8703d6baa8386d9151820e66f51db7b97

efi-memory
4/12/2020
Proof-of-concept EFI runtime driver for reading and writing to virtual memory under Windows and kdmapper fork utilizing it
Download SHA1: 993f4ab0978821efb12cad1a485978627e6356ed

GetDeviceInterfacesMemoryLeak
10/18/2020
Proof-of-concept showing memory leak in IopGetDeviceInterfaces
Download SHA1: e95d6ed9d9c0011df3ab5164bd45738c532c6dd8

VirusTotalUploader
7/29/2018
Open-source Winforms application for uploading files to VirusTotal using official API
Download SHA1: ac112a81a8a13637c57c42e06c609882e978492b