kkamagui / shadow-box-for-x86

Related projects: ⓘ

• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆284Updated 5 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆198Updated 5 months ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆195Updated 8 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆319Updated 5 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆131Updated 8 years ago
• guedou / r2m2
  radare2 + miasm2 = ♥
  ☆101Updated 4 years ago
• Wenzel / r2vmi
  Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins
  ☆133Updated 5 years ago
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆243Updated 4 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆143Updated 6 years ago
• a13xp0p0v / kernel-hack-drill
  Linux kernel exploitation experiments
  ☆183Updated 2 months ago
• acama / xrop
  Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
  ☆296Updated last month
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆158Updated 7 years ago
• felixwilhelm / mario_baslr
  PoC for breaking hypervisor ASLR using branch target buffer collisions
  ☆164Updated 7 years ago
• 0xcl / clang-cfi-bypass-techniques
  Exploitation techniques to bypass Clang CFI when applied to Chromium
  ☆110Updated 6 years ago
• nccgroup / TriforceLinuxSyscallFuzzer
  A linux system call fuzzer using TriforceAFL
  ☆169Updated 6 months ago
• felixwilhelm / xenpwn
  Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization
  ☆143Updated 8 years ago
• gamozolabs / applepie
  A hypervisor for fuzzing built with WHVP and Bochs
  ☆365Updated 5 years ago
• s3team / VMHunt
  ☆171Updated 5 years ago
• 0xKira / qemu-vm-escape
  ☆277Updated 4 years ago
• googleprojectzero / DrSancov
  DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables
  ☆203Updated 3 years ago
• Wenzel / pyvmidbg
  LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger
  ☆216Updated 3 years ago
• gamozolabs / falkervisor_grilled_cheese
  ☆172Updated 2 years ago
• WinHeapExplorer / WinHeap-Explorer
  WinHeap Explorer repository.
  ☆119Updated 6 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆126Updated 6 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆160Updated 7 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 6 years ago
• bitdefender / libbdvmi
  ☆62Updated last year
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆444Updated 5 years ago
• pagabuc / gfree
  Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries
  ☆95Updated 6 years ago
• pzread / unstrip
  ELF Unstrip Tool
  ☆107Updated 9 years ago