quarkslab / titanmLinks
This repository contains the tools we used in our research on the Google Titan M chip
☆188Updated 2 years ago
Alternatives and similar repositories for titanm
Users that are interested in titanm are comparing it to the libraries listed below
Sorting:
- FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…☆292Updated 3 years ago
- A de-socketing library for fuzzing.☆147Updated 2 months ago
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆473Updated 10 months ago
- Collection of scripts for reversing Qualcomm Hexagon baseband / modem firmware☆162Updated last year
- fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)☆279Updated 3 months ago
- ☆320Updated 11 months ago
- Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, an…☆188Updated last year
- ☆112Updated last year
- A curated list of awesome baseband research resources☆167Updated 5 years ago
- ☆186Updated 2 months ago
- Broadcom and Cypress firmware emulation for fuzzing and further full-stack debugging☆443Updated last year
- ☆177Updated 3 months ago
- Frida-based general purpose fuzzer☆217Updated 4 years ago
- Binary code coverage visualizer plugin for Ghidra☆291Updated 11 months ago
- A binary analysis framework written in Rust.☆169Updated 3 weeks ago
- Docker image for building ghidra RE framework from source☆76Updated 2 years ago
- Emulation and Feedback Fuzzing of Firmware with Memory Sanitization☆162Updated 3 years ago
- A python symbolic execution framework using radare2's ESIL (Evaluable String Intermediate Language)☆166Updated 2 years ago
- Scripts, plugins, and information for working with Samsung's Shannon baseband.☆157Updated 11 months ago
- Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules☆229Updated last month
- PoC 2019-2215 exploit for S8/S8 active with DAC + SELinux + Knox/RKP bypass☆228Updated 4 years ago
- ☆440Updated 8 months ago
- ☆121Updated 3 months ago
- ☆218Updated 2 years ago
- Code and exercises for a workshop on z3 and angr☆228Updated 4 years ago
- High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques☆152Updated last year
- A Minimalist Instruction Extender for the ARM architecture and IDA Pro☆200Updated 9 months ago
- A firmware base address search tool.☆353Updated 4 years ago
- DynamoRIO plugin to get ASAN and SanitizerCoverage compatible output for closed-source executables☆208Updated 3 years ago
- A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.☆256Updated 6 months ago