Alternatives and similar repositories for bochspwn

Users that are interested in bochspwn are comparing it to the libraries listed below

• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆306Updated 6 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆452Updated 6 years ago
• wmliang / pe-afl
  ☆249Updated 4 years ago
• trailofbits / AppJailLauncher
  CTF Challenge Framework for Windows 8 and above
  ☆155Updated 4 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆210Updated 3 years ago
• 0xKira / qemu-vm-escape
  ☆283Updated 5 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆205Updated last year
• RUB-SysSec / kAFL
  Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels
  ☆581Updated 6 years ago
• saaramar / Deterministic_LFH
  Have fun with the LowFragmentationHeap
  ☆242Updated 4 years ago
• Cr4sh / ioctlfuzzer
  Automatically exported from code.google.com/p/ioctlfuzzer
  ☆168Updated 10 years ago
• hunter-ht-2018 / ptfuzzer
  Improving AFL by using Intel PT to collect branch information
  ☆292Updated 6 years ago
• k0keoyo / Some-Kernel-Fuzzing-Paper
  Some kernel fuzzing paper about windows and linux
  ☆254Updated 7 years ago
• fgsect / unicorefuzz
  Fuzzing the Kernel Using Unicornafl and AFL++
  ☆302Updated 2 years ago
• linhlhq / TinyAFL
  ☆198Updated 2 years ago
• gamozolabs / applepie
  A hypervisor for fuzzing built with WHVP and Bochs
  ☆378Updated 6 years ago
• acama / xrop
  Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
  ☆304Updated last year
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆135Updated 9 years ago
• s3team / VMHunt
  ☆181Updated 6 years ago
• SB-GC-Labs / hAFL1
  ☆138Updated 4 years ago
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆199Updated 5 years ago
• HexHive / BOPC
  Block Oriented Programming -- Compiler
  ☆185Updated 4 years ago
• andreafioraldi / IDAngr
  Use angr in the IDA Pro debugger generating a state from the current debug session
  ☆280Updated 5 years ago
• saaramar / 35C3_Modern_Windows_Userspace_Exploitation
  ☆154Updated 6 years ago
• danigargu / syms2elf
  A plugin for Hex-Ray's IDA Pro and radare2 to export the symbols recognized to the ELF symbol table
  ☆211Updated 3 years ago
• FSecureLABS / z3_and_angr_binary_analysis_workshop
  Code and exercises for a workshop on z3 and angr
  ☆230Updated 4 years ago
• talos-vulndev / afl-dyninst
  American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
  ☆187Updated 4 years ago
• ucsb-seclab / difuze
  Fuzzer for Linux Kernel Drivers
  ☆380Updated 3 years ago
• angr / heaphopper
  HeapHopper is a bounded model checking framework for Heap-implementations
  ☆216Updated last month
• scwuaptx / LazyFragmentationHeap
  WCTF 2019 challenge
  ☆100Updated 6 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆153Updated 6 years ago