A tool for finding the one gadget RCE in libc
☆76May 30, 2020Updated 5 years ago
Alternatives and similar repositories for angry_gadget
Users that are interested in angry_gadget are comparing it to the libraries listed below
Sorting:
- ☆12Mar 7, 2020Updated 6 years ago
- Explanation and code to emulate and run a MIPS binary using Qiling framework. Also a detailed vulnerability writeup for a buffer overflow…☆36Nov 18, 2020Updated 5 years ago
- Cross-architecture instruction counting for CTF solving☆48Mar 13, 2022Updated 3 years ago
- Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints☆127Jun 18, 2020Updated 5 years ago
- A library for patching ELFs☆62Dec 4, 2020Updated 5 years ago
- ☆22Jul 6, 2018Updated 7 years ago
- keynote I gave at GreHack 2019☆19Nov 17, 2019Updated 6 years ago
- Fetching data from system☆11Jun 18, 2017Updated 8 years ago
- burp extender for fuzzing☆10Aug 10, 2018Updated 7 years ago
- Hunt for and Exploit the libSSH Authentication Bypass (CVE-2018-10933)☆10Oct 18, 2018Updated 7 years ago
- Repository for dealing with Malloc mangling functions☆12Jun 11, 2020Updated 5 years ago
- 🔍Heap analysis tool for CTF pwn.☆223May 4, 2021Updated 4 years ago
- Use angr inside GDB. Create an angr state from the current debugger state.☆203Jul 22, 2020Updated 5 years ago
- ☆19Dec 28, 2021Updated 4 years ago
- A tool that automatically creates fuzzing harnesses based on a library☆285Nov 13, 2021Updated 4 years ago
- A thorough library database to assist with binary exploitation tasks.☆194Aug 1, 2022Updated 3 years ago
- Supporting Materials for “Symbolic Triage” blog post☆24Oct 31, 2022Updated 3 years ago
- Tool to extract the kallsyms (System.map) from a memory dump☆29Aug 17, 2023Updated 2 years ago
- Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop.☆16Jan 9, 2022Updated 4 years ago
- BAP python bindings☆22Dec 1, 2023Updated 2 years ago
- Target-centric program analysis.☆76Feb 9, 2026Updated last month
- Provide powerful tools for seccomp analysis☆1,096Updated this week
- SALT - SLUB ALlocator Tracer for the Linux kernel☆156Sep 10, 2018Updated 7 years ago
- rune - radare2 based symbolic emulator☆27Aug 29, 2017Updated 8 years ago
- Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…☆469Apr 13, 2024Updated last year
- High-Efficiency eXpanded Coverage for Improved Testing of Executables☆25Jul 7, 2022Updated 3 years ago
- GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.☆274Jan 16, 2024Updated 2 years ago
- BigMap integration on AFL++☆15Apr 5, 2021Updated 4 years ago
- Recover mutation graph from an AFL seed☆60Jan 6, 2021Updated 5 years ago
- KLEE Symbolic Execution Engine☆61Oct 27, 2019Updated 6 years ago
- Materials from Fuzzing Bay Area meetups☆68Dec 20, 2019Updated 6 years ago
- The best tool for finding one gadget RCE in libc.so.6☆2,300Updated this week
- Symbolic execution in radare2 with angr☆39Jul 27, 2021Updated 4 years ago
- ☆201Mar 9, 2023Updated 3 years ago
- Tensilica Xtensa Architecture Plugin and ESP8266 Firmware Loader for Binary Ninja☆17Apr 8, 2023Updated 2 years ago
- Facilitating control-flow hijacking primitive evaluation for Linux kernel vulnerability☆62Sep 4, 2019Updated 6 years ago
- Our team's CTF writeups☆11Jan 15, 2020Updated 6 years ago
- justCTF 2019 challenges sources☆41Jun 9, 2021Updated 4 years ago
- PoC CVE-2017-5123 - LPE - Bypassing SMEP/SMAP. No KASLR☆32Jun 26, 2020Updated 5 years ago