Alternatives and similar repositories for MSM8974_exploit:

Users that are interested in MSM8974_exploit are comparing it to the libraries listed below

• laginimaineb / cve-2015-6639
  QSEE Privilege Escalation Exploit using PRDiag* commands (CVE-2015-6639)
  ☆119Updated 5 years ago
• laginimaineb / fuzz_zone
  Fuzzing utility which enables sending arbitrary SCMs to TrustZone
  ☆61Updated 9 years ago
• laginimaineb / cve-2016-2431
  Qualcomm TrustZone kernel privilege escalation
  ☆63Updated 8 years ago
• laginimaineb / unify_trustlet
  Unifies ".mdt" and ".bXX" files into a complete Trustlet
  ☆88Updated 6 years ago
• ghassani / qc-tz-es-activated-exploit
  A rewrite of laginimaineb MSM8974_exploit as a stand alone kernel module.
  ☆18Updated 9 years ago
• laginimaineb / unpack_bootloader_image
  Small script to unpack the bootloader image format present in Nexus 5 devices
  ☆39Updated 9 years ago
• laginimaineb / qseecom_modifications
  Modifications in the qseecom driver which enable FuzzZone to operate
  ☆23Updated 2 years ago
• laginimaineb / cve-2014-7920-7921
  Exploit code for CVE-2014-7920 and CVE-2014-7921 - code-exec in mediaserver up to Android 5.1
  ☆76Updated 9 years ago
• frederic / exynos8890-bootrom-dump
  dump Exynos 8890 bootROM from Samsung Galaxy S7
  ☆37Updated 4 years ago
• retme7 / mate7_TZ_exploit
  Huawei mate 7 TrustZone exploit
  ☆111Updated 9 years ago
• laginimaineb / static_kallsyms
  Rebuilds kallsyms statically from a kernel binary
  ☆42Updated 7 years ago
• laginimaineb / standalone_msm8974
  Standalone C version of the MSM8974 TrustZone exploit
  ☆27Updated 4 years ago
• programa-stic / hexag00n
  Hexag00n: A collection of reverse engineering tools for the Qualcomm Digital Signal Proccesor (QDSP6)
  ☆113Updated 8 years ago
• ucsb-seclab / boomerang
  Exploiting the Semantic Gap in Trusted Execution Environments
  ☆55Updated 5 years ago
• laginimaineb / WarOfTheWorlds
  QSEE Shellcode to directly hijack the "Normal World" Linux Kernel
  ☆54Updated 8 years ago
• Comsecuris / mtk-baseband-sanctuary
  ☆54Updated 7 years ago
• nitayart / sboot_dump
  A tool to dump RAM using S-Boot Upload Mode
  ☆37Updated 8 years ago
• gsmk / hexagon
  IDA processor module for the hexagon (QDSP6) processor
  ☆229Updated this week
• fi01 / kallsymsprint
  ☆32Updated 9 years ago
• laginimaineb / cve-2014-4322
  CVE-2014-4322 Exploit
  ☆24Updated 9 years ago
• bkerler / qcpatchtools
  Some stuff for doing insane qc chipset pwning.
  ☆42Updated 2 years ago
• quarkslab / samsung-trustzone-research
  Reverse-engineering tools and exploits for Samsung's implementation of TrustZone
  ☆148Updated 5 years ago
• nccgroup / cachegrab
  a tool designed to help perform and visualize trace-driven cache attacks against software in the secure world of TrustZone-enabled ARMv8 …
  ☆79Updated 5 years ago
• wapiflapi / wsym
  Adds symbols to a ELF file.
  ☆61Updated 9 years ago
• Comsecuris / shannonRE
  Helpful scripts for various tasks performed during reverse engineering the Shannon Baseband with the goal to exploit the Samsung Galaxy S…
  ☆246Updated 4 years ago
• ghassani / mclf-ida-loader
  An IDA file loader for Mobicore trustlet and driver binaries
  ☆59Updated 5 years ago
• laginimaineb / android_fde_bruteforce
  Scripts to bruteforce Android's Full Disk Encryption off the device
  ☆176Updated 8 years ago
• laginimaineb / ExtractKeyMaster
  Exploit that extracts Qualcomm's KeyMaster keys using CVE-2015-6639 and CVE-2016-2431
  ☆344Updated 8 years ago
• secmob / PoCForCVE-2015-1528
  I'll submit the poc after blackhat
  ☆116Updated 9 years ago
• shakevsky / keybuster
  ☆123Updated 2 years ago