Infects DXE bios image with backdoor before booting the system.
this backdoor can execute kernel code directly from your C++ project.
AMD motherboard is most likely required.
#include "km.h"
std::vector km::global_export_list;
NTOSKRNL_EXPORT(PsGetCurrentProcess);
NTOSKRNL_EXPORT(PsGetCurrentProcessId);
int main(void)
{
if (!km::initialize())
{
return 0;
}
LOG("current process: %llx\n", km::call(PsGetCurrentProcess));
LOG("current process id: %lld\n", km::call(PsGetCurrentProcessId));
}