Alternatives and similar repositories for kernel-exploits:

Users that are interested in kernel-exploits are comparing it to the libraries listed below

• mdulin2 / house-of-muney
  Code execution via corrupting mmap malloc chunks with ASLR bypass
  ☆41Updated 2 years ago
• farazsth98 / virtualbox-qemu-vuln-research-notes
  Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…
  ☆186Updated last year
• AravGarg / kernel-hacking
  ☆26Updated 3 years ago
• Agnoctopus / Tartiflette
  Snapshot fuzzing with KVM and LibAFL
  ☆94Updated 2 years ago
• smallkirby / lysithea
  small cute utils for kernel challenges
  ☆34Updated 11 months ago
• nccgroup / libslub
  ☆172Updated last month
• shift-crops / CTFWriteups
  my writeups (mainly pwnable)
  ☆33Updated 6 months ago
• MaherAzzouzi / LinuxKernelExploitation
  Old and new CTFs about Linux kernel exploitation.
  ☆52Updated 3 years ago
• invictus-0x90 / vulnerable_linux_driver
  An intentionally vulnerable linux driver for research purposes/practice in kernel exploit dev
  ☆117Updated 7 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆53Updated 4 years ago
• chompie1337 / kernel_obj_finder
  Simple script to find kernel objects of a certain size in the Linux kernel
  ☆108Updated 2 years ago
• un1c0rn-the-pwnie / FSOPAgain
  FSOP Again
  ☆21Updated 3 years ago
• sslab-gatech / ArcHeap
  ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
  ☆150Updated 4 years ago
• libpwntools / libpwntools
  pwntools library implementation in c++
  ☆46Updated 3 years ago
• nrb547 / kernel-exploitation
  ☆95Updated 2 years ago
• kirschju / wiedergaenger
  Exploiting Array-Out-of-Bounds-Write-Accesses on Linux
  ☆26Updated 7 years ago
• radareorg / esilsolve
  A python symbolic execution framework using radare2's ESIL (Evaluable String Intermediate Language)
  ☆163Updated 2 years ago
• pietroborrello / RopDaemon
  A fast, multithreaded, ROP-gadget semantics analyzer.
  ☆49Updated 4 years ago
• X3eRo0 / CTFMate
  ☆45Updated last year
• PaoloMonti42 / salt
  SALT - SLUB ALlocator Tracer for the Linux kernel
  ☆150Updated 6 years ago
• mephi42 / initramfs-wrap
  Add debugging tools to an existing initramfs, even if it is for a foreign architecture
  ☆21Updated 7 months ago
• ChrisTheCoolHut / angry_gadget
  A tool for finding the one gadget RCE in libc
  ☆75Updated 4 years ago
• Myldero / kernelinit
  A tool for automating setup of kernel pwn challenges
  ☆55Updated 4 months ago
• Kyle-Kyle / angry-FSROP
  a new class of file structure attacks
  ☆49Updated 2 years ago
• vngkv123 / articles
  Research related
  ☆89Updated 3 years ago
• thebabush / reflex
  Flex 'em lexers
  ☆39Updated 4 years ago
• andreafioraldi / angrgdb
  Use angr inside GDB. Create an angr state from the current debugger state.
  ☆198Updated 4 years ago
• sam4k / linux-kernel-resources
  Curated collection of resources, examples and scripts for Linux kernel devs, researchers and hobbyists.
  ☆55Updated 2 years ago
• grimm-co / GEARSHIFT
  ☆132Updated 4 years ago
• gfelber / how2keap
  A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
  ☆73Updated 4 months ago