Alternatives and similar repositories for SROP

Users that are interested in SROP are comparing it to the libraries listed below

• nahueldsanchez / blogpost_qiling_dlink_1
  Explanation and code to emulate and run a MIPS binary using Qiling framework. Also a detailed vulnerability writeup for a buffer overflow…
  ☆33Updated 4 years ago
• 0xdidu / Presentations
  ☆14Updated 2 years ago
• AndrewFasano / ghidra-unicorn
  Export a binary from ghidra to emulate with unicorn
  ☆27Updated 5 years ago
• shijy16 / WDFuzzer
  A coverage-guided and memory-detection enabled fuzzer for windows applications.
  ☆31Updated 4 years ago
• pietroborrello / RopDaemon
  A fast, multithreaded, ROP-gadget semantics analyzer.
  ☆50Updated 4 years ago
• eknoes / libafl-dashboard
  A simple, web based dashboard to use with LibAFL + OnDiskJSONMonitor
  ☆24Updated last year
• atredis-jordan / SymbolicTriagePost
  Supporting Materials for “Symbolic Triage” blog post
  ☆24Updated 2 years ago
• rudyerudite / AngErza
  Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop.
  ☆17Updated 3 years ago
• thebabush / python-hfuzz
  python and honggfuzz
  ☆25Updated 5 years ago
• abhisek / afl-fuzzing-workshop
  A introductory workshop to getting started with fuzzing using american fuzzy lop (AFL)
  ☆23Updated 5 years ago
• Brandon-Everhart / AngryIDA
  Python based angr plug in for IDA Pro.
  ☆35Updated 7 years ago
• mechanicalnull / phantasm
  Binary Ninja plugin for visualizing coverage over time
  ☆25Updated 3 years ago
• interruptlabs / semgrep_bn
  Binary Ninja plugin to automate the process of generating pseudo-C code, running Semgrep over the pseudo-C, and presenting the results.
  ☆33Updated 4 months ago
• arunmagesh / dumb-nfuzz
  The Dumb Network Fuzzer
  ☆20Updated last year
• Kyle-Kyle / pwning-toolset
  Personal pwning toolset developed/used by myself. Use at your own risk.
  ☆17Updated 2 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆55Updated 4 years ago
• RUB-SysSec / gadget_synthesis
  Esorics 2021 - Towards Automating Code-Reuse Attacks Using Synthesized Gadget Chains
  ☆56Updated 3 years ago
• DavidCatalan / fridacov
  JS modules for Frida based tools to add code coverage to your instrumentation scripts.
  ☆26Updated 6 years ago
• interruptlabs / heimdallr-ida
  A IDA plugin to enable linking to locations in an IDB with a disas:// URI
  ☆32Updated last year
• season-lab / SymFusion
  SymFusion: Hybrid Instrumentation for Concolic Execution
  ☆17Updated 2 years ago
• andreafioraldi / QEMU-SanCov
  SanitizerCoverage hooks and coverage reports for user-mode QEMU
  ☆12Updated 5 years ago
• patois / BFS2019
  Bluefrost Exploitation Challenge 2019 - Exploit and Writeup
  ☆24Updated last year
• c3r34lk1ll3r / CVE-2017-5123
  PoC CVE-2017-5123 - LPE - Bypassing SMEP/SMAP. No KASLR
  ☆32Updated 4 years ago
• tin-z / GDBleed
  Dynamic-Static binary instrumentation framework on top of GDB
  ☆51Updated last year
• MaherAzzouzi / BrowserExploitation
  Browser exploitation v8 and sandbox escape challenges with solutions.
  ☆27Updated 3 years ago
• yrp604 / bdump
  ☆47Updated 2 years ago
• JaanusKaapPublic / Silfen
  Windows syscall fuzzer that I used in 2017 & 2018. Not much to say about it but maybe helpful to someone. At least syscall information it…
  ☆20Updated 5 years ago
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated last year
• andreafioraldi / idb2gdb
  Load function names from an IDA Pro database inside GDB
  ☆20Updated 6 years ago
• bindecy / ohsmap
  ASLR bypass in Chrome version 77
  ☆24Updated 5 years ago