Alternatives and similar repositories for kernel-exploits

Users that are interested in kernel-exploits are comparing it to the libraries listed below

• Agnoctopus / Tartiflette
  Snapshot fuzzing with KVM and LibAFL
  ☆96Updated 2 years ago
• smallkirby / lysithea
  small cute utils for kernel challenges
  ☆37Updated last year
• nccgroup / libslub
  ☆178Updated 4 months ago
• farazsth98 / virtualbox-qemu-vuln-research-notes
  Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…
  ☆189Updated last year
• MaherAzzouzi / LinuxKernelExploitation
  Old and new CTFs about Linux kernel exploitation.
  ☆55Updated 3 years ago
• shift-crops / CTFWriteups
  my writeups (mainly pwnable)
  ☆33Updated 9 months ago
• AravGarg / kernel-hacking
  ☆26Updated 3 years ago
• mdulin2 / house-of-muney
  Code execution via corrupting mmap malloc chunks with ASLR bypass
  ☆43Updated 2 years ago
• kirschju / wiedergaenger
  Exploiting Array-Out-of-Bounds-Write-Accesses on Linux
  ☆25Updated 7 years ago
• chompie1337 / kernel_obj_finder
  Simple script to find kernel objects of a certain size in the Linux kernel
  ☆109Updated 2 years ago
• libpwntools / libpwntools
  pwntools library implementation in c++
  ☆47Updated 4 years ago
• gfelber / how2keap
  A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
  ☆80Updated 7 months ago
• nrb547 / kernel-exploitation
  ☆98Updated 2 years ago
• pietroborrello / RopDaemon
  A fast, multithreaded, ROP-gadget semantics analyzer.
  ☆50Updated 4 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆56Updated 4 years ago
• mephi42 / initramfs-wrap
  Add debugging tools to an existing initramfs, even if it is for a foreign architecture
  ☆23Updated 9 months ago
• Kyle-Kyle / angry-FSROP
  a new class of file structure attacks
  ☆50Updated 2 years ago
• sslab-gatech / ArcHeap
  ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
  ☆155Updated 4 years ago
• zznop / bn-kconfig-recover
  Automated recovery of Linux kernel build configurations
  ☆24Updated 3 years ago
• sefcom / KHeaps
  Playing for {K (H) eaps}: Understanding and Improving Linux Kernel Exploit Reliability
  ☆82Updated 3 years ago
• thebabush / reflex
  Flex 'em lexers
  ☆40Updated 4 years ago
• un1c0rn-the-pwnie / FSOPAgain
  FSOP Again
  ☆23Updated 3 years ago
• zyingp / desockmulti
  A de-socketing tool that is 10x faster than desock (Preeny) in fuzzing network protocols
  ☆88Updated 2 years ago
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆153Updated 6 years ago
• niklasb / dump-seccomp
  GDB plugin to dump SECCOMP rules set via prctnl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER)
  ☆22Updated 9 years ago
• pjlantz / optee-qemu
  Environment with vulnerable kernel for exploitation of the TEE driver (CVE-2021-44733)
  ☆76Updated 3 years ago
• ChrisTheCoolHut / angry_gadget
  A tool for finding the one gadget RCE in libc
  ☆76Updated 5 years ago
• duasynt / gdb_scripts
  ☆58Updated 4 years ago
• AFLplusplus / AFL-Snapshot-LKM
  A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
  ☆138Updated 3 years ago
• airbus-cyber / afl_ghidra_emu
  ☆186Updated 3 months ago