thecruz / efi_driver_access Goto Github PK

Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write memory without restrictions

Makefile 3.40% C++ 43.58% C 53.02%

efi_driver_access's Introduction

EFI Driver Access

Efi Driver Access is a simply project to load a driver during system boot with the idea to give the user kernel access for read/write memory without restrictions

CRZEFI

CRZEFI is the EFI Driver itself and is based on other publications like https://github.com/SamuelTulach/efi-memory

The difference of this one basically is that is prepared to call some windows kernel function directly for the user access

EFIClient

EFIClient is a simply Console example for the usage of EFI Driver

One of the main examples where i use this driver is in: https://www.unknowncheats.me/forum/apex-legends/405983-direct-efi-aimbot-glow-hack.html

Compilling

To compile EFIClient is easiest as you only need to install Visual Studio, open the project, and compile it

For the CRZEFI is very simple too but you must have a gcc compiler with gnu-efi, the easiest method to have this enviroment is install an ubuntu desktop/server somewhere and run the next commands:

sudo apt install gnu-efi build-essential
git clone https://github.com/TheCruZ/EFI_Driver_Access
cd EFI_Driver_Access
cd CRZEFI
make

And it should generate a memory.efi file

How To Use

You have to put in a USB Driver the edk2 efi shell: https://github.com/tianocore/edk2/releases in the path

/EFI/Boot/bootx64.efi

and then leave the memory.efi somethere in the USB Driver for example in

/memory.efi

Now you can bootup with you usb and load the efi file with the "load memory.efi" command (going first to the USB folder that can be FS0, FS1, FS2...) and then come back to your boot menu/bios to run windows normally, you will know that the memory.efi is working because will set blue background while windows system is loading

Have a fun and keep learning!

efi_driver_access's People

Contributors

Stargazers

Watchers

Forkers

infistar kaisersoju wrath-debug fengjixuchui jaynefrack morelli690 enllune elmelik misteriosojo 5l1v3r1 heroofhell heisenberg-chef qazxsw1597532018 igromanru villadi1997 bynanex hifiphile gustavogino loneicewolf oorlykk shark-lucas kankoshev ibrahim-elsakka wuyadie moshuid zjkanjie gzsgcser killvxk nicelnicel antiwar3 llxiaoyuan lolhesap d4rkd3n1337 inheritance xthebell systemahacker abcz1114 cl4ym0re schc4043 kimamananeko lostusergp overflowka jhssugi cvlabsio decimaldreamer peiga helloppm nothbar zach0809 saavnforks meiercn webstorage119 nocturnalx1 morrrrrrrrrrr christopherwoodall lbxloom axactt tempaccountnull joker594302831 mhsplay vnescape hxoreyer

efi_driver_access's Issues

windows bluescreen

When I load memory.efi on EFI shell then exit it, it loads my bootmgr for my computer then bluescreens saying "system thread exception not handled", if you could help I would appreciate that a lot thanks!

Add support for Windows 10 22H2

different approach

cant we just use GetVariable instead of SetVariable to avoid memory leak?

This source has memory leak.

I've tested several time, this source has memory leak.

when i looping readmemory, paged pool get real high.

why need hook other runtime service table function

Windows wont start

System Information
Windows 10 Pro 21H1

I boot via my usb stick, the shell starts, i go into FS1 and type load memory.efi, everything works fine, when i type exit and select the Windows Boot Manager i get the blue screen where it says "Driver seems to be working as expected! Windows is booting now...", but after that my Windows boot screen looks like this

and after a few seconds the PC reboots.

error: incompatible type for argument 5 of ‘BS->CreateEventEx’ 369 | ExitGuid,

I am having this error while compiling the driver in lunix .

main.c: In function ‘efi_main’:
main.c:354:65: error: incompatible type for argument 5 of ‘BS->CreateEventEx’
354 | VirtualGuid,
| ^~~~~~~~~~~
| |
| EFI_GUID
main.c:354:65: note: expected ‘const EFI_GUID *’ but argument is of type ‘EFI_GUID’
main.c:369:65: error: incompatible type for argument 5 of ‘BS->CreateEventEx’
369 | ExitGuid,
| ^~~~~~~~
| |
| EFI_GUID
main.c:369:65: note: expected ‘const EFI_GUID *’ but argument is of type ‘EFI_GUID’
make: *** [: main.o] Error 1

BSOD (Amd?)

Hi, i have a problem with amd cpu's - Always if i try to laod the driver with a amd board (many different tried) it give me a bluescreen (0x000009c) on win 10 1809. Does it only work on Intel?

May I know the source code of INJ.exe

sorry but the INJ.exe is in your another repo. But wonder if I could reach you here.

The driver efi source code is avilable here, but I really want to learn how the dll is injected by INJ.exe. . Thanks!

Issue closed, replied from author:
https://github.com/TheCruZ/Simple-Manual-Map-Injector