[SCHiM]

This is a webpage collecting a list of (signed?) drivers that may be loaded into the Windows kernel and thereby escalate privileges. Because the Windows kernel doesn't support loading drivers that are not signed by Microsoft, attackers have to resort to exploiting legitimate signed drivers to gain access to the kernel once they've obtained Administrator (root) or SYSTEM (root) privileges.

A central list of exploitable drivers serves as a starting point for both attackers and defenders. Attackers can use it for their research if they want to raise their privileges by loading code into the kernel (rootkits), or attack protected processes (PPL and up, think anti-virus and anti-malware processes, DRM). For defenders it serves as a curated list of drivers to look out for in their environment. For example, to raise alerts if a Lenovo driver is loaded on a Dell system.

A similar site is the LolBAS site, where signed Windows binaries are listed for their ability to serve as trusted "proxy" executables into which attackers can somehow inject or load their code.