DavidBuchanan314 / Pwn Mbr
Licence: mit
A simple MBR hijack demonstration
Stars: ✭ 153
Programming Languages
c
50402 projects - #5 most used programming language
Labels
Projects that are alternatives of or similar to Pwn Mbr
Amongus Mumble
Mumble VoIP Plugin and mod for the popular game "Among Us" to enable Proximity Voice Chat.
Stars: ✭ 105 (-31.37%)
Mutual labels: hooking
Tardis
Trace And Rewrite Delays In Syscalls: Hooking time-related Linux syscalls to warp a process's perspective of time, using ptrace.
Stars: ✭ 144 (-5.88%)
Mutual labels: hooking
Yaota8266
Yet another OTA solution for ESP8266, this time supporting large (>512KB) firmwares even on 1MB devices (repo is rebased)
Stars: ✭ 112 (-26.8%)
Mutual labels: bootloader
Potatonv
Unlock bootloader of Huawei devices on Kirin 960/659
Stars: ✭ 132 (-13.73%)
Mutual labels: bootloader
Gamemaniptutorial
A tutorial for manipulating the rendering of a game (generally to increase its quality) if you only have a binary available
Stars: ✭ 119 (-22.22%)
Mutual labels: hooking
Cfb
Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers, and facilitating the process of analyzing Windows drivers for vulnerabilities
Stars: ✭ 146 (-4.58%)
Mutual labels: hooking
Wolfboot
wolfBoot is a portable, OS-agnostic, secure bootloader for microcontrollers, supporting firmware authentication and firmware update mechanisms.
Stars: ✭ 110 (-28.1%)
Mutual labels: bootloader
Refind Minimal
A stunningly clean theme for the rEFInd UEFI boot manager.
Stars: ✭ 1,585 (+935.95%)
Mutual labels: bootloader
Bootmine
Bootable minesweeper game in a 512-byte boot sector
Stars: ✭ 136 (-11.11%)
Mutual labels: bootloader
Jesfs
Jo's Embedded Serial File System (for Standard Serial NOR-Flash)
Stars: ✭ 104 (-32.03%)
Mutual labels: bootloader
Vac Hooks
Hook WinAPI functions used by Valve Anti-Cheat. Log calls and intercept arguments & return values. DLL written in C.
Stars: ✭ 103 (-32.68%)
Mutual labels: hooking
Cc2538 Bsl
Python cross-platform script to upload firmware via the serial boot loader onto the CC13xx, CC2538 and CC26xx SoC.
Stars: ✭ 129 (-15.69%)
Mutual labels: bootloader
Frida Ios Hook
A script that helps you trace classes, functions, and modify the return values of methods on iOS platform
Stars: ✭ 151 (-1.31%)
Mutual labels: hooking
Awesome Frida
Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
Stars: ✭ 2,025 (+1223.53%)
Mutual labels: hooking
pwn-mbr
A simple MBR hijack demonstration
Principles of operation:
Phase 1: Injection
- A malicious binary is run with root privileges.
- The original MBR is copied to the next "free" location (first sector found containing only zeroes) on the disk, before the first partition. A magic number is appended, so that it can be found later.
- The boot sector is overwritten with "malicious" code.
Phase 2: Execution
- Next time the machine is rebooted, the BIOS starts execution of the payload.
- In this example, the text "MBR PWNED!" is written to the screen a few hundred times.
- The payload locates the backup of the original boot sector (via the magic number) and copies it over to where it would normally reside in memory (
0x7C00). However, this is where the payload is initially running from, so it copies itself elsewhere first. - Finally, the payload jumps back to
0x7C00, resuming normal boot operations.
Notes:
- Only works on BIOS/legacy boot systems.
- Although this demo doesn't do anything malicious, it is very possible that it corrupts your filesystem, so only run it on a dedicated VM unless you're very brave.
Demo:
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].