RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections
☆70Nov 13, 2025Updated 4 months ago
Alternatives and similar repositories for RetSpill
Users that are interested in RetSpill are comparing it to the libraries listed below
Sorting:
- A fast and powerful gadget finder and ROP chain generator. A research prototype for the ropbot paper accepted at NDSS'26.☆47Jan 22, 2026Updated last month
- ☆26May 10, 2021Updated 4 years ago
- ☆16Aug 19, 2024Updated last year
- Playing for {K (H) eaps}: Understanding and Improving Linux Kernel Exploit Reliability☆92May 12, 2022Updated 3 years ago
- GDB plug-in that helps exploiting the Linux kernel's SLUB allocator☆99Mar 29, 2023Updated 2 years ago
- Linux kernel privilege escalation techniques☆153Aug 9, 2024Updated last year
- Binary Exploitation Skill. Gain RCE from arbitrary write.☆243Dec 23, 2024Updated last year
- uacatcher open source repo☆22Jul 22, 2023Updated 2 years ago
- ☆35Feb 4, 2026Updated last month
- ☆13Dec 14, 2021Updated 4 years ago
- An XNU kernel race condition bug☆47Jan 30, 2025Updated last year
- SALT - SLUB ALlocator Tracer for the Linux kernel☆156Sep 10, 2018Updated 7 years ago
- My browser pwn collections. Mainly JavaScript engine stuff.☆34Mar 12, 2026Updated last week
- All challenges and writups of the GlacierCTF 2023☆16Feb 15, 2024Updated 2 years ago
- A hacky tool for analysing linux kernel commits☆39Feb 7, 2023Updated 3 years ago
- A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).☆107Jan 13, 2026Updated 2 months ago
- Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities☆91May 7, 2024Updated last year
- PeTAL: Ensuring Access Control Integrity against Data-only Attacks on Linux (ACM CCS 2024)☆16Nov 4, 2024Updated last year
- attachment and write up for D^3CTF 2023's pwn challenge - d3kcache☆42Jun 28, 2024Updated last year
- study https://github.com/n132/Libc-GOT-Hijacking☆15Dec 7, 2023Updated 2 years ago
- ☆34Apr 14, 2025Updated 11 months ago
- A tool combining DWARF info and source to search for kernel heap objects☆25Dec 23, 2025Updated 2 months ago
- find relevant security papers published in the top-4 conferences (S&P, USENIX, CCS, NDSS)☆199Aug 27, 2024Updated last year
- Exploit for Real World CTF 6th RIPTC.☆33Jan 31, 2024Updated 2 years ago
- ☆20Dec 4, 2023Updated 2 years ago
- The companion repository for the 39C3 talk: Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU☆36Feb 4, 2026Updated last month
- Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…☆1,287Jan 29, 2026Updated last month
- ☆107Aug 9, 2024Updated last year
- A linux exploitation skill facilitates heap address leaking or performs overflow from BSS to heap☆20May 3, 2024Updated last year
- PoC of fuzzing closed-source userspace binaries with KVM☆167May 4, 2024Updated last year
- ☆81Sep 7, 2023Updated 2 years ago
- kernel-pwn and writeup collection☆701Oct 2, 2023Updated 2 years ago
- LPE PoC of a vulnerability in the io_uring subsystem of the Linux Kernel.☆91Nov 23, 2023Updated 2 years ago
- ☆189Feb 8, 2025Updated last year
- Everything you need to build and run Linux and Android kernels for exploit development☆101Apr 9, 2024Updated last year
- Kernel development & exploitation practice environment.☆250Sep 10, 2023Updated 2 years ago
- Attachment and official writeup for D^3CTF 2025's Pwn challenge - d3kheap2☆16Jul 2, 2025Updated 8 months ago
- A Refcount-guided Fuzzer for Exposing Temporal Memory Errors in Linux Kernel☆30Jun 24, 2025Updated 8 months ago
- a new class of file structure attacks☆59Nov 19, 2022Updated 3 years ago