Alternatives and similar repositories for kvm-fuzz:

Users that are interested in kvm-fuzz are comparing it to the libraries listed below

• nccgroup / libslub
  ☆166Updated last week
• farazsth98 / virtualbox-qemu-vuln-research-notes
  Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…
  ☆182Updated 11 months ago
• sefcom / RetSpill
  RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections
  ☆55Updated 9 months ago
• SmoothHacker / Tuscan-Leather
  Linux Kernel Snapshot Fuzzer using KVM
  ☆46Updated 11 months ago
• cmu-pasta / linux-kernel-enriched-corpus
  Linux Kernel Fuzzer Corpus
  ☆132Updated this week
• seal9055 / sfuzz
  High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques
  ☆149Updated last year
• SB-GC-Labs / hAFL1
  ☆134Updated 3 years ago
• AFLplusplus / qemu-libafl-bridge
  A patched QEMU that exposes an interface for LibAFL-based fuzzers
  ☆72Updated this week
• gfelber / how2keap
  A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
  ☆70Updated 2 months ago
• sam4k / lica
  A hacky tool for analysing linux kernel commits
  ☆37Updated 2 years ago
• RUB-SysSec / Nyx
  USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types
  ☆197Updated 3 years ago
• chompie1337 / kernel_obj_finder
  Simple script to find kernel objects of a certain size in the Linux kernel
  ☆107Updated 2 years ago
• quarkslab / tritondse
  Triton-based DSE library with loading and exploration capabilities (and more!)
  ☆113Updated last month
• zyingp / desockmulti
  A de-socketing tool that is 10x faster than desock (Preeny) in fuzzing network protocols
  ☆82Updated 2 years ago
• seemoo-lab / VirtFuzz
  VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
  ☆117Updated 8 months ago
• AFLplusplus / AFL-Snapshot-LKM
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆136Updated 3 years ago
• chop-project / chop
  Binary exploitation by confusing the unwinder
  ☆59Updated last year
• nyx-fuzz / QEMU-Nyx
  ☆87Updated 4 months ago
• 0xdea / weggli-patterns
  A collection of my weggli patterns to facilitate vulnerability research.
  ☆94Updated last year
• airbus-seclab / AFLplusplus-blogpost
  Blogpost about optimizing binary-only fuzzing with AFL++
  ☆63Updated last year
• Sentinel-One / efi_fuzz
  ☆142Updated 3 months ago
• 0xf4b1 / bsod-kernel-fuzzing
  BSOD: Binary-only Scalable fuzzing Of device Drivers
  ☆159Updated 3 years ago
• Pamplemousse / bits_of_static_binary_analysis
  Material and examples for a presentation on static binary analysis.
  ☆41Updated 3 years ago
• ant4g0nist / Sloth
  Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emula…
  ☆121Updated last year
• sefcom / KHeaps
  Playing for {K (H) eaps}: Understanding and Improving Linux Kernel Exploit Reliability
  ☆75Updated 2 years ago
• linhlhq / TinyAFL
  ☆193Updated last year
• NeatMonster / slabdbg
  GDB plug-in that helps exploiting the Linux kernel's SLUB allocator
  ☆84Updated last year
• invictus-0x90 / vulnerable_linux_driver
  An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev
  ☆113Updated 7 years ago
• mdulin2 / house-of-muney
  Code execution via corrupting mmap malloc chunks with ASLR bypass
  ☆40Updated 2 years ago
• pr0me / SAFIREFUZZ
  Same-Architecture Firmware Rehosting and Fuzzing
  ☆111Updated last month