kkamagui / shadow-box-for-x86
Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
☆184Updated 5 years ago
Related projects: ⓘ
- A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3☆284Updated 5 years ago
- PEDA-like debugger UI for WinDbg☆198Updated 5 months ago
- Cross Architecture Shellcode in C☆195Updated 8 years ago
- A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities☆319Updated 5 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆131Updated 8 years ago
- radare2 + miasm2 = ♥☆101Updated 4 years ago
- Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins☆133Updated 5 years ago
- AFL + DynamoRIO = fuzzing binaries with no source code on Linux☆243Updated 4 years ago
- SALT - SLUB ALlocator Tracer for the Linux kernel☆143Updated 6 years ago
- Linux kernel exploitation experiments☆183Updated 2 months ago
- Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC☆296Updated last month
- I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016☆158Updated 7 years ago
- PoC for breaking hypervisor ASLR using branch target buffer collisions☆164Updated 7 years ago
- Exploitation techniques to bypass Clang CFI when applied to Chromium☆110Updated 6 years ago
- A linux system call fuzzer using TriforceAFL☆169Updated 6 months ago
- Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization☆143Updated 8 years ago
- A hypervisor for fuzzing built with WHVP and Bochs☆365Updated 5 years ago
- ☆171Updated 5 years ago
- ☆277Updated 4 years ago
- DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables☆203Updated 3 years ago
- LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger☆216Updated 3 years ago
- ☆172Updated 2 years ago
- WinHeap Explorer repository.☆119Updated 6 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆126Updated 6 years ago
- An open source, multi-architecture ROP compiler written in python☆160Updated 7 years ago
- Small tool for generating ropchains using unicorn and z3☆197Updated 6 years ago
- ☆62Updated last year
- Cross Platform Kernel Fuzzer Framework☆444Updated 5 years ago
- Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries☆95Updated 6 years ago
- ELF Unstrip Tool☆107Updated 9 years ago