ghassani / qc-tz-es-activated-exploit

Related projects ⓘ

Alternatives and complementary repositories for qc-tz-es-activated-exploit

• laginimaineb / MSM8974_exploit
  Full TrustZone exploit for MSM8974
  ☆137Updated 8 years ago
• laginimaineb / cve-2015-6639
  QSEE Privilege Escalation Exploit using PRDiag* commands (CVE-2015-6639)
  ☆117Updated 5 years ago
• Avalonswanderer / widevinel3_Android_PoC
  Widevine L3 PoC for Android Keybox Recovery, Content Key dump and Netflix Media Download
  ☆86Updated 2 years ago
• shakevsky / keybuster
  ☆114Updated 2 years ago
• tamirzb / CVE-2021-1961
  Exploit code for CVE-2021-1961
  ☆106Updated 2 years ago
• Avalonswanderer / wideXtractor
  A tool to trace Widevine execution in Android and dump buffers.
  ☆93Updated 2 years ago
• wellsleep / qsee_km_cacheattack
  ☆9Updated 4 years ago
• laginimaineb / qseecom_modifications
  Modifications in the qseecom driver which enable FuzzZone to operate
  ☆23Updated last year
• Avalonswanderer / widevine_key_ladder
  Widevine Key Ladder in Python3
  ☆37Updated 2 years ago
• bkerler / qcpatchtools
  Some stuff for doing insane qc chipset pwning.
  ☆40Updated 2 years ago
• frederic / exynos8890-bootrom-dump
  dump Exynos 8890 bootROM from Samsung Galaxy S7
  ☆34Updated 4 years ago
• laginimaineb / cve-2016-2431
  Qualcomm TrustZone kernel privilege escalation
  ☆59Updated 8 years ago
• deadblue / chromium-cdm-proxy
  A proxy library between Chromium browser and WidevineCDM library.
  ☆28Updated 4 years ago
• laginimaineb / standalone_msm8974
  Standalone C version of the MSM8974 TrustZone exploit
  ☆26Updated 4 years ago
• ucsb-seclab / boomerang
  Exploiting the Semantic Gap in Trusted Execution Environments
  ☆55Updated 4 years ago
• laginimaineb / fuzz_zone
  Fuzzing utility which enables sending arbitrary SCMs to TrustZone
  ☆59Updated 8 years ago
• laginimaineb / unpack_bootloader_image
  Small script to unpack the bootloader image format present in Nexus 5 devices
  ☆38Updated 8 years ago
• vtsingaras / qcom-mbn-ida-loader
  IDA loader plugin for Qualcomm Bootloader Stages
  ☆40Updated 10 years ago
• laginimaineb / unify_trustlet
  Unifies ".mdt" and ".bXX" files into a complete Trustlet
  ☆86Updated 6 years ago
• ghassani / mclf-ida-loader
  An IDA file loader for Mobicore trustlet and driver binaries
  ☆58Updated 4 years ago
• datalocaltmp / frida-cov
  Tool based on @gaasedelen's lighthouse frida tool modified for capturing coverage of Android executables.
  ☆18Updated last year
• anestisb / snet-extractor
  SafetyNet Jar download & extractor utility
  ☆35Updated 6 years ago
• pwn0rz / fairplay_research
  Some RE work on Apple's Fairplay DRM
  ☆192Updated last year
• widevinelove / Foxconn_C14100
  The widevine content decryption module private key and blob for System ID 5650
  ☆8Updated 2 years ago
• laginimaineb / static_kallsyms
  Rebuilds kallsyms statically from a kernel binary
  ☆41Updated 7 years ago
• iGio90 / DirtyPipeZ
  ☆18Updated 2 years ago
• amoulu / TinySmaliEmulator
  A very minimalist smali emulator that could be used to "decrypt" obfuscated strings
  ☆96Updated 7 years ago