Alternatives and similar repositories for xrop

Users that are interested in xrop are comparing it to the libraries listed below

• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆199Updated 4 years ago
• ucsb-seclab / leakless
  Function redirection via ELF tricks.
  ☆160Updated 10 years ago
• danigargu / syms2elf
  A plugin for Hex-Ray's IDA Pro and radare2 to export the symbols recognized to the ELF symbol table
  ☆209Updated 2 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆337Updated 6 years ago
• wagiro / pintool
  This tool can be useful for solving some reversing challenges in CTFs events.
  ☆141Updated 5 years ago
• FSecureLABS / z3_and_angr_binary_analysis_workshop
  Code and exercises for a workshop on z3 and angr
  ☆228Updated 4 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆451Updated 6 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆204Updated last year
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆300Updated 2 years ago
• Boyan-MILANOV / ropium
  ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
  ☆386Updated 2 years ago
• trailofbits / AppJailLauncher
  CTF Challenge Framework for Windows 8 and above
  ☆155Updated 3 years ago
• angr / patcherex
  Shellphish's automated patching engine, originally created for the Cyber Grand Challenge.
  ☆257Updated last week
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆248Updated 5 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆208Updated 3 years ago
• ALSchwalm / dwarfexport
  Export dwarf debug information from IDA Pro
  ☆209Updated 2 years ago
• angr / angr-dev
  Some helper scripts to set up an environment for angr development.
  ☆117Updated this week
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆305Updated 6 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆187Updated 4 years ago
• yannayl / glibc_malloc_for_exploiters
  GlibC Malloc for Exploiters presentation
  ☆147Updated 6 years ago
• trailofbits / binjascripts
  Scripts for Binary Ninja
  ☆257Updated 2 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆216Updated last week
• packz / ropeme
  ROPME is a set of python scripts to generate ROP gadgets and payload.
  ☆148Updated 9 years ago
• Mipu94 / peda-heap
  Some new commands debug heap for peda
  ☆99Updated 3 months ago
• CptGibbon / House-of-Corrosion
  A description of the "House of Corrosion" GLIBC heap exploitation technique.
  ☆223Updated 4 years ago
• osirislab / Fentanyl
  Fentanyl is an IDAPython script that makes patching significantly easier
  ☆211Updated 2 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆153Updated 6 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆198Updated 7 years ago
• m1ghtym0 / magic_gadget_finder
  Unravels any libcs magic for your ret2libc exploit.
  ☆81Updated 2 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆134Updated 9 years ago
• 0ffffffffh / dragondance
  Binary code coverage visualizer plugin for Ghidra
  ☆292Updated last year