Alternatives and similar repositories for kvm-fuzz

Users that are interested in kvm-fuzz are comparing it to the libraries listed below

• nccgroup / libslub
  ☆178Updated 4 months ago
• farazsth98 / virtualbox-qemu-vuln-research-notes
  Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…
  ☆188Updated last year
• seal9055 / sfuzz
  High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques
  ☆152Updated last year
• SB-GC-Labs / hAFL1
  ☆137Updated 3 years ago
• chompie1337 / kernel_obj_finder
  Simple script to find kernel objects of a certain size in the Linux kernel
  ☆109Updated 2 years ago
• pr0me / SAFIREFUZZ
  Same-Architecture Firmware Rehosting and Fuzzing
  ☆126Updated 6 months ago
• zyingp / desockmulti
  A de-socketing tool that is 10x faster than desock (Preeny) in fuzzing network protocols
  ☆88Updated 2 years ago
• SmoothHacker / Tuscan-Leather
  Linux Kernel Snapshot Fuzzer using KVM
  ☆47Updated last year
• seemoo-lab / VirtFuzz
  VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
  ☆122Updated last year
• gfelber / how2keap
  A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
  ☆80Updated 6 months ago
• chop-project / chop
  Binary exploitation by confusing the unwinder
  ☆63Updated 2 years ago
• sam4k / lica
  A hacky tool for analysing linux kernel commits
  ☆37Updated 2 years ago
• airbus-seclab / AFLplusplus-blogpost
  Blogpost about optimizing binary-only fuzzing with AFL++
  ☆64Updated last year
• sefcom / RetSpill
  RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections
  ☆60Updated last year
• cmu-pasta / linux-kernel-enriched-corpus
  Linux Kernel Fuzzer Corpus
  ☆142Updated this week
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆162Updated last month
• RUB-SysSec / Nyx
  USENIX 2021 - Nyx: Greybox Hypervisor Fuzzing using Fast Snapshots and Affine Types
  ☆203Updated 3 years ago
• quarkslab / tritondse
  Triton-based DSE library with loading and exploration capabilities (and more!)
  ☆121Updated last month
• linhlhq / TinyAFL
  ☆198Updated 2 years ago
• 0xdea / weggli-patterns
  A collection of my weggli patterns to facilitate vulnerability research.
  ☆137Updated last month
• invictus-0x90 / vulnerable_linux_driver
  An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev
  ☆121Updated 7 years ago
• AFLplusplus / unicornafl
  AFL bindings for Unicorn-Engine
  ☆80Updated last week
• AFLplusplus / AFL-Snapshot-LKM
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆138Updated 3 years ago
• nyx-fuzz / KVM-Nyx
  ☆36Updated last year
• ant4g0nist / Sloth
  Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emula…
  ☆123Updated last year
• MaherAzzouzi / LinuxKernelExploitation
  Old and new CTFs about Linux kernel exploitation.
  ☆55Updated 3 years ago
• NeatMonster / slabdbg
  GDB plug-in that helps exploiting the Linux kernel's SLUB allocator
  ☆89Updated 2 years ago
• Markakd / GREBE
  ☆78Updated last year
• AFLplusplus / qemu-libafl-bridge
  A patched QEMU that exposes an interface for LibAFL-based fuzzers
  ☆74Updated last month
• mdulin2 / house-of-muney
  Code execution via corrupting mmap malloc chunks with ASLR bypass
  ☆43Updated 2 years ago