Alternatives and similar repositories for qemu-vm-escape

Users that are interested in qemu-vm-escape are comparing it to the libraries listed below

• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆337Updated 6 years ago
• matrix1001 / heapinspect
  🔍Heap analysis tool for CTF pwn.
  ☆223Updated 4 years ago
• scwuaptx / CTF
  Some CTF write up
  ☆246Updated 3 years ago
• CptGibbon / House-of-Corrosion
  A description of the "House of Corrosion" GLIBC heap exploitation technique.
  ☆223Updated 4 years ago
• niklasb / 3dpwn
  VirtualBox 3D exploits & PoCs
  ☆162Updated 6 years ago
• niklasb / hack2win-chrome
  This is collaborative work of Ned Williamson and Niklas Baumstark
  ☆132Updated 5 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆300Updated 2 years ago
• linhlhq / TinyAFL
  ☆198Updated 2 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆153Updated 6 years ago
• PAGalaxyLab / uniFuzzer
  A fuzzing tool for closed-source binaries based on Unicorn and LibFuzzer
  ☆342Updated 5 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆304Updated 6 years ago
• wmliang / pe-afl
  ☆248Updated 4 years ago
• k0keoyo / Some-Kernel-Fuzzing-Paper
  Some kernel fuzzing paper about windows and linux
  ☆254Updated 7 years ago
• Mipu94 / peda-heap
  Some new commands debug heap for peda
  ☆99Updated last month
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆199Updated 4 years ago
• david942j / ctf-writeups
  Collection of scripts and writeups
  ☆323Updated 3 years ago
• A-0-E / writeups
  Write-ups from A*0*E.
  ☆198Updated 5 years ago
• SB-GC-Labs / hAFL1
  ☆137Updated 3 years ago
• str8outtaheap / heapwn
  Linux Heap Exploitation Practice
  ☆383Updated 6 years ago
• ret2p4nda / kernel-pwn
  ☆175Updated 6 years ago
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆248Updated 5 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆450Updated 6 years ago
• vngkv123 / aSiagaming
  My Chrome and Safari exploit code + write-up repo
  ☆527Updated 3 years ago
• StarCross-Tech / heap_exploit_2.31
  ☆223Updated 4 years ago
• scwuaptx / LazyFragmentationHeap
  WCTF 2019 challenge
  ☆100Updated 5 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆208Updated 3 years ago
• Zon8Research / v8-vulnerabilities
  Corpus of public v8 vulnerability PoCs.
  ☆212Updated 3 years ago
• allpaca / V8Harvest
  The Harvest of V8 regress.
  ☆137Updated 4 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆216Updated 8 months ago