jprx / DEFCON30-PACMAN

Related projects ⓘ

Alternatives and complementary repositories for DEFCON30-PACMAN

• jprx / PacmanAttack
  Defeating Pointer Authentication on the Apple M1 with Hardware Attacks
  ☆34Updated 2 years ago
• jprx / PacmanKit
  An IOKit kext designed for microarchitectural security research on M1
  ☆32Updated 2 years ago
• jprx / PacmanOS
  M1 bare metal project in Rust
  ☆28Updated 2 years ago
• jprx / PacmanFinder
  A Ghidra static analysis tool for locating PACMAN Gadgets
  ☆12Updated 2 years ago
• jevinskie / pypcode-emu
  Ghidra P-Code emulation and static LLVM lifting in Python
  ☆29Updated 2 years ago
• XenoKovah / IntelTXE-PoC
  Intel Management Engine JTAG Proof of Concept - 2022 Instructions
  ☆32Updated 2 years ago
• AFLplusplus / qemuafl
  This fork of QEMU enables fuzzing userspace ELF binaries under AFL++.
  ☆79Updated 3 weeks ago
• nyx-fuzz / KVM-Nyx
  ☆33Updated 7 months ago
• riverloopsec / ninjadiff
  NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements!
  ☆57Updated 3 years ago
• grant-h / ShannonEE
  FirmWire has replaced ShannonEE. OLD: A dynamic analysis environment for Samsung's Shannon baseband.
  ☆37Updated 2 years ago
• marcograss / rbasefind
  A firmware base address search tool.
  ☆39Updated 5 months ago
• zolutal / kheap_sift
  A tool combining DWARF info and source to search for kernel heap objects
  ☆22Updated 8 months ago
• bordig-f / angr-strategies
  A cheat sheet that summarises "strategies" (or techniques) to use with angr.
  ☆29Updated 3 years ago
• zznop / bn-kconfig-recover
  Automated recovery of Linux kernel build configurations
  ☆24Updated 2 years ago
• IAIK / prefetch
  This repository contains several tools to perform Prefetch Side-Channel Attacks
  ☆57Updated 7 years ago
• vul337 / KextFuzz
  Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)
  ☆74Updated last year
• thezdi / binaryninja
  binary ninja related code
  ☆24Updated 2 years ago
• owenlly / Indirector_Artifact
  Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]
  ☆56Updated 3 months ago
• grant-h / shannon_s5000
  A code skeleton of Samsung's Shannon S5000 baseband modem.
  ☆42Updated 4 years ago
• 0x3c3e / slides
  CodeQL + DTrace = Memory Disclosure Vulnerabilities in XNU
  ☆45Updated last year
• pr0me / SAFIREFUZZ
  Same-Architecture Firmware Rehosting and Fuzzing
  ☆104Updated last year
• HackOvert / BinaryNinjaSnippets
  Code snippets for Binary Ninja's Python API
  ☆23Updated 3 years ago
• jprx / PacmanPatcher
  Patch your macOS kernel to enable support for the high-resolution timers on M1
  ☆23Updated 8 months ago
• TeumessianFox / ASPFuzz
  ASPFuzz: Fuzzing the AMD SP's ROM bootloader with LibAFL using QEMU full-system emulation
  ☆27Updated last year
• toolCHAINZ / jingle
  SMT Modeling for Ghidra's PCODE
  ☆20Updated this week
• seclab-ucr / SyzGen_setup
  ☆43Updated 3 years ago
• jprx / mock-kernel-2023
  Official Solution and Source Code for the "Mock Kernel" challenge from UIUCTF 2023
  ☆49Updated last year
• AFLplusplus / qemu-libafl-bridge
  A patched QEMU that exposes an interface for LibAFL-based fuzzers
  ☆60Updated 3 weeks ago
• vusec / ghostrace
  ☆65Updated 8 months ago
• static-analysis-engineering / CodeHawk-Binary
  CodeHawk Binary Analyzer for malware analysis and general reverse engineering
  ☆25Updated this week