bcoles / kasld
Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address as an unprivileged local user, for the purpose of bypassing Kernel Address Space Layout Randomization (KASLR).
☆420Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for kasld
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆467Updated 4 months ago
- A fuzzer for full VM kernel/driver targets☆659Updated 2 months ago
- Kernel development & exploitation practice environment.☆212Updated last year
- ☆143Updated 5 months ago
- ☆425Updated last month
- repository for kernel exploit practice☆388Updated 5 years ago
- radius2 is a fast binary emulation and symbolic execution framework using radare2☆586Updated 6 months ago
- A blazing fast™ multithreaded ROP Gadget finder. ropper / ropgadget alternative☆475Updated last month
- ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together☆380Updated last year
- kernel-pwn and writeup collection☆568Updated last year
- Winnie is an end-to-end system that makes fuzzing Windows applications easy☆542Updated last year
- Injects code into ELF executables post-build☆225Updated 5 months ago
- A Collection of Chrome Sandbox Escape POCs/Exploits for learning☆800Updated 4 years ago
- ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).☆416Updated 6 months ago
- ☆163Updated 8 months ago
- Use angr in Ghidra☆562Updated 3 months ago
- AFL binary instrumentation☆293Updated last year
- A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.☆389Updated 4 years ago
- helps visualize heap operations for pwn and debugging☆305Updated last year
- ☆306Updated 5 months ago
- The fastest Intel-PT decoder for fuzzing☆361Updated 9 months ago
- Snapshot-based coverage-guided windows kernel fuzzer☆312Updated 2 years ago
- symbolic execution plugin for binary ninja☆249Updated 8 months ago
- Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…☆182Updated 8 months ago
- This Repository aims at giving a basic idea about Kernel Exploitation.☆501Updated 4 months ago
- A Binary Ninja plugin for vulnerability research.☆281Updated 2 months ago
- Windows Pwnable Study☆322Updated 4 years ago
- A powerful static binary rewriting tool☆983Updated 3 months ago
- A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS☆276Updated last week
- Android Kernel Exploitation☆587Updated 2 years ago