quarkslab/samsung-trustzone-research external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

quarkslab/samsung-trustzone-research

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/quarkslab/samsung-trustzone-research)

Close

quarkslab / samsung-trustzone-researchView on GitHubMore

• External links
• Readme badge

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

☆158Dec 16, 2019Updated 6 years ago

Alternatives and similar repositories for samsung-trustzone-research

Users that are interested in samsung-trustzone-research are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• enovella / TEE-reversing

  View on GitHub
  A curated list of public TEE resources for learning how to reverse-engineer and achieve trusted code execution on ARM devices
  ☆979Jan 7, 2026Updated 2 months ago
• frederic / exynos8890-bootrom-dump

  View on GitHub
  dump Exynos 8890 bootROM from Samsung Galaxy S7
  ☆43Jun 15, 2020Updated 5 years ago
• ghassani / mclf-ida-loader

  View on GitHub
  An IDA file loader for Mobicore trustlet and driver binaries
  ☆60Jan 21, 2020Updated 6 years ago
• Trustonic / trustonic-tee-user-space

  View on GitHub
  Android user space components for the Trustonic Trusted Execution Environment
  ☆39Sep 29, 2015Updated 10 years ago
• ghassani / mclf-ghidra-loader

  View on GitHub
  A Mobicore Trustlet/Driver Binary Loader for Ghidra
  ☆13Jul 10, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• flankerhqd / bindump4j

  View on GitHub
  A portable utility to locate android binder service
  ☆99Sep 28, 2019Updated 6 years ago
• quarkslab / titanm

  View on GitHub
  This repository contains the tools we used in our research on the Google Titan M chip
  ☆206Aug 22, 2022Updated 3 years ago
• bkerler / tee_research

  View on GitHub
  Some tee/trustzone helper stuff
  ☆55Sep 29, 2019Updated 6 years ago
• alex91ar / samsung-debug

  View on GitHub
  Patch to enable KGDBOC via Serial over USB. And debug Samsung Android Kernels.
  ☆24Jun 29, 2019Updated 6 years ago
• alexhude / MMUit

  View on GitHub
  Lightweight toolkit to explore and modify address translation for ARM64.
  ☆44Jul 25, 2021Updated 4 years ago
• travisgoodspeed / symgrate2-binja-plugin

  View on GitHub
  A plugin for Binary Ninja to query the Symgrate2 database.
  ☆14Sep 11, 2021Updated 4 years ago
• chompie1337 / s8_2019_2215_poc

  View on GitHub
  PoC 2019-2215 exploit for S8/S8 active with DAC + SELinux + Knox/RKP bypass
  ☆236Jun 19, 2020Updated 5 years ago
• puppykitten / tbase

  View on GitHub
  trustonic tbase research
  ☆32Jan 28, 2018Updated 8 years ago
• secmob / TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices

  View on GitHub
  ☆172Aug 6, 2020Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• ningzhenyu / nailgun

  View on GitHub
  Nailgun attack on ARM devices.
  ☆165May 13, 2021Updated 4 years ago
• synacktiv / shannon-dbg

  View on GitHub
  Debugger for the Shannon Baseband
  ☆59Jun 15, 2020Updated 5 years ago
• PAGalaxyLab / uniFuzzer

  View on GitHub
  A fuzzing tool for closed-source binaries based on Unicorn and LibFuzzer
  ☆344Aug 23, 2019Updated 6 years ago
• quarkslab / sboot-binwalk

  View on GitHub
  ☆23Jun 29, 2017Updated 8 years ago
• allpaca / chrome-sbx-db

  View on GitHub
  A Collection of Chrome Sandbox Escape POCs/Exploits for learning
  ☆860Jun 4, 2020Updated 5 years ago
• fgsect / BaseSAFE

  View on GitHub
  Emulation and Feedback Fuzzing of Firmware with Memory Sanitization
  ☆166Jun 26, 2021Updated 4 years ago
• veritas501 / glibc_got_hijack_study

  View on GitHub
  study https://github.com/n132/Libc-GOT-Hijacking
  ☆15Dec 7, 2023Updated 2 years ago
• shinyquagsire23 / CVE-2020-12753-PoC

  View on GitHub
  A proof-of-concept for CVE-2020-12753
  ☆45Jun 1, 2020Updated 5 years ago
• Keysight / optee_fuzzer

  View on GitHub
  This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.
  ☆141Aug 12, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• mit-ll / LL-Fuzzer

  View on GitHub
  An automated NFC fuzzing framework for Android devices.
  ☆143Nov 19, 2020Updated 5 years ago
• andreafioraldi / frida-fuzzer

  View on GitHub
  This experimetal fuzzer is meant to be used for API in-memory fuzzing.
  ☆580Jun 22, 2020Updated 5 years ago
• doyensec / vbox-fuzz

  View on GitHub
  Companion to the "Introduction to VirtualBox security research" Blog Post
  ☆35Apr 26, 2022Updated 3 years ago
• grant-h / ShannonEE

  View on GitHub
  FirmWire has replaced ShannonEE. OLD: A dynamic analysis environment for Samsung's Shannon baseband.
  ☆43Mar 14, 2022Updated 4 years ago
• exodusintel / Chrome-Issue-992914-Sealed-Frozen-Element-Kind-Type-Confusion-RCE-Exploit

  View on GitHub
  September Chrome 1day by István Kurucsai
  ☆82Sep 9, 2019Updated 6 years ago
• A2nkF / unauthd

  View on GitHub
  A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
  ☆86Oct 15, 2020Updated 5 years ago
• hhj4ck / checkm30

  View on GitHub
  ☆98Jul 29, 2021Updated 4 years ago
• NeatMonster / mclf-ghidra-loader

  View on GitHub
  Ghidra loader module for the Mobicore trustlet and driver binaries
  ☆27Nov 2, 2019Updated 6 years ago
• pjlantz / optee-qemu

  View on GitHub
  Environment with vulnerable kernel for exploitation of the TEE driver (CVE-2021-44733)
  ☆77Dec 28, 2021Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Comsecuris / shannonRE

  View on GitHub
  Helpful scripts for various tasks performed during reverse engineering the Shannon Baseband with the goal to exploit the Samsung Galaxy S…
  ☆253Jun 22, 2020Updated 5 years ago
• frederic / exynos-usbdl

  View on GitHub
  Unsigned code loader for Exynos BootROM
  ☆121Aug 13, 2020Updated 5 years ago
• vngkv123 / articles

  View on GitHub
  Research related
  ☆89Apr 5, 2022Updated 3 years ago
• travisgoodspeed / symgrate2-ida-plugin

  View on GitHub
  IDA Pro plugin to recovery static Thumb2 symbols.
  ☆14Sep 14, 2021Updated 4 years ago
• galli-leo / emmutaler

  View on GitHub
  A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.
  ☆165Sep 18, 2021Updated 4 years ago
• googleprojectzero / SkCodecFuzzer

  View on GitHub
  Fuzzing harness for testing proprietary image codecs supported by Skia on Android
  ☆356Jan 10, 2021Updated 5 years ago
• retme7 / mate7_TZ_exploit

  View on GitHub
  Huawei mate 7 TrustZone exploit
  ☆109Aug 4, 2015Updated 10 years ago