a13xp0p0v / kernel-hack-drill

Related projects ⓘ

Alternatives and complementary repositories for kernel-hack-drill

• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆147Updated 6 years ago
• 0xKira / qemu-vm-escape
  ☆280Updated 4 years ago
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆244Updated 5 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆295Updated last year
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆325Updated 5 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆212Updated last month
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆370Updated 2 years ago
• Cisco-Talos / covnavi
  ☆63Updated 5 years ago
• ucsb-seclab / leakless
  Function redirection via ELF tricks.
  ☆156Updated 9 years ago
• matrix1001 / heapinspect
  🔍Heap analysis tool for CTF pwn.
  ☆221Updated 3 years ago
• vnik5287 / kernel_rop
  ☆84Updated 8 years ago
• CptGibbon / House-of-Corrosion
  A description of the "House of Corrosion" GLIBC heap exploitation technique.
  ☆220Updated 4 years ago
• str8outtaheap / heapwn
  Linux Heap Exploitation Practice
  ☆377Updated 5 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆186Updated 3 years ago
• PAGalaxyLab / uniFuzzer
  A fuzzing tool for closed-source binaries based on Unicorn and LibFuzzer
  ☆342Updated 5 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆204Updated 3 years ago
• niklasb / 3dpwn
  VirtualBox 3D exploits & PoCs
  ☆159Updated 5 years ago
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆199Updated 4 years ago
• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆171Updated 8 months ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆297Updated 5 years ago
• sslab-gatech / ArcHeap
  ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
  ☆144Updated 3 years ago
• hardenedlinux / harbian-qa
  Bug hunting through fuzzer/*-sanitizer/etc...
  ☆130Updated 3 years ago
• invictus-0x90 / vulnerable_linux_driver
  An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev
  ☆109Updated 7 years ago
• sslab-gatech / janus
  Janus: a state-of-the-art file system fuzzer on Linux
  ☆210Updated 4 years ago
• HexHive / T-Fuzz
  ☆248Updated 4 years ago
• invictus1306 / beebug
  A tool for checking exploitability
  ☆210Updated 5 years ago
• FSecureLABS / z3_and_angr_binary_analysis_workshop
  Code and exercises for a workshop on z3 and angr
  ☆222Updated 3 years ago
• k0keoyo / Some-Kernel-Fuzzing-Paper
  Some kernel fuzzing paper about windows and linux
  ☆253Updated 7 years ago