a13xp0p0v / kernel-hack-drill

Related projects: ⓘ

• 0xKira / qemu-vm-escape
  ☆277Updated 4 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆143Updated 6 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆284Updated 5 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆319Updated 5 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆293Updated last year
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆243Updated 4 years ago
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆367Updated 2 years ago
• invictus-0x90 / vulnerable_linux_driver
  An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev
  ☆105Updated 7 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆212Updated 4 months ago
• 0xricksanchez / fisy-fuzz
  This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
  ☆141Updated last year
• ray-cp / vm-escape
  ☆265Updated this week
• houjingyi233 / CPU-vulnerability-collections
  ☆131Updated this week
• intel / kernel-fuzzer-for-xen-project
  Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL
  ☆464Updated 2 months ago
• AFLplusplus / AFL-Snapshot-LKM
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆133Updated 3 years ago
• PAGalaxyLab / uniFuzzer
  A fuzzing tool for closed-source binaries based on Unicorn and LibFuzzer
  ☆340Updated 5 years ago
• CptGibbon / House-of-Corrosion
  A description of the "House of Corrosion" GLIBC heap exploitation technique.
  ☆220Updated 4 years ago
• FSecureLABS / z3_and_angr_binary_analysis_workshop
  Code and exercises for a workshop on z3 and angr
  ☆220Updated 3 years ago
• googleprojectzero / SockFuzzer
  ☆356Updated last year
• vnik5287 / kernel_rop
  ☆84Updated 8 years ago
• gamozolabs / cookie_dough
  A fuzzing introspection tool
  ☆161Updated 4 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆203Updated 3 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆184Updated 5 years ago
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆198Updated 4 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆186Updated 3 years ago
• ucsb-seclab / leakless
  Function redirection via ELF tricks.
  ☆156Updated 9 years ago
• guidovranken / vfuzz
  ☆177Updated this week
• SB-GC-Labs / hAFL1
  ☆132Updated 3 years ago
• linhlhq / TinyAFL
  ☆189Updated last year
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆69Updated 4 years ago
• sslab-gatech / janus
  Janus: a state-of-the-art file system fuzzer on Linux
  ☆207Updated 4 years ago