Alternatives and similar repositories for xenpwn

Users that are interested in xenpwn are comparing it to the libraries listed below

• utds3lab / pemu
  ☆105Updated 10 years ago
• awailly / nrop
  Automated Return-Oriented Programming Chaining
  ☆85Updated 9 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆124Updated 10 years ago
• felixwilhelm / mario_baslr
  PoC for breaking hypervisor ASLR using branch target buffer collisions
  ☆167Updated 9 years ago
• carlosgprado / NaFl
  A clone (of the basic core) of AFL fuzzer
  ☆74Updated 9 years ago
• RolfRolles / SynesthesiaYS
  Synesthesia, implemented as Yices scripts
  ☆94Updated 8 years ago
• CIFASIS / nosy-newt
  Nosy Newt is a simple concolic execution tool for exploring the input space of a binary executable program based in Triton
  ☆62Updated 8 years ago
• c01db33f / concolica
  Python concolic execution framework for program analysis
  ☆68Updated 11 years ago
• roachspray / opcde2017
  Slides and very basic examples
  ☆112Updated 8 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆162Updated 8 years ago
• maurer / symfuzz
  ☆64Updated 10 years ago
• pyoor / distiller
  A distributed corpus distillation tool for windows applications.
  ☆32Updated 8 years ago
• programa-stic / ropc-llvm
  ropc-llvm is a PoC of a Turing complete ROP compiler with support for a subset of LLVM IR. It is an extension of ropc.
  ☆69Updated 12 years ago
• mothran / aflpin
  aflpin enables afl to fuzz blackbox binaries using a pin tool to trace execution branches.
  ☆172Updated 11 years ago
• Frky / scat
  Dynamic analysis of binary programs to retrieve function-related information (arity, type of parameters, coupling).
  ☆69Updated 8 years ago
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆131Updated 3 years ago
• XVilka / hacklu
  ☆38Updated 10 years ago
• NorthBit / bulletin-scraper
  Download all of Microsoft's security updates and symbols
  ☆41Updated 9 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆174Updated 4 years ago
• lifting-bits / grr
  High-throughput fuzzer and emulator of DECREE binaries
  ☆241Updated 6 years ago
• huku- / research
  Notes on various topics I'm interested in
  ☆161Updated 2 months ago
• intel / jit-spray-poc-for-ksp
  ☆28Updated 3 years ago
• nccgroup / TriforceOpenBSDFuzzer
  System call fuzzing of OpenBSD amd64 using TriforceAFL (i.e. AFL and QEMU)
  ☆46Updated 8 years ago
• Zentific / vmidbg
  PoC LibVMI-based GDB server for virtual machines
  ☆54Updated 8 years ago
• keystone-engine / placeholder
  A place holder for Keystone repo. See https://github.com/keystone-engine/keystone for the real stuff
  ☆67Updated 3 years ago
• mncoppola / StringIPC
  CSAW CTF 2015 Linux kernel exploitation challenge
  ☆37Updated 10 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆138Updated 10 years ago
• carlosgprado / BrundleFuzz
  BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.
  ☆82Updated 9 years ago
• bnagy / afl-trivia
  Short, unrelated helper scripts for users of AFL (the fuzzer)
  ☆112Updated 9 years ago
• mxatone / mitigation-bounty
  Old mitigation-bounty code that was applicable to edge before it use webkit/chrome
  ☆87Updated 9 years ago