ucsb-seclab / boomerangLinks
Exploiting the Semantic Gap in Trusted Execution Environments
☆56Updated 5 years ago
Alternatives and similar repositories for boomerang
Users that are interested in boomerang are comparing it to the libraries listed below
Sorting:
- Some tee/trustzone helper stuff☆54Updated 6 years ago
- Qualcomm TrustZone kernel privilege escalation☆66Updated 9 years ago
- Ghidra loader module for the Mobicore trustlet and driver binaries☆27Updated 5 years ago
- Source code for building an exploitable linux kernel challenge iso.☆45Updated 12 years ago
- View Linux perf traces in IDA Pro☆14Updated 5 years ago
- An IDA file loader for Mobicore trustlet and driver binaries☆59Updated 5 years ago
- Debugger for the Shannon Baseband☆58Updated 5 years ago
- BPF Processor for IDA Python☆52Updated 7 years ago
- Fuzzing utility which enables sending arbitrary SCMs to TrustZone☆61Updated 9 years ago
- ☆51Updated last year
- QSEE Shellcode to directly hijack the "Normal World" Linux Kernel☆55Updated 9 years ago
- Android user space components for the Trustonic Trusted Execution Environment☆37Updated 10 years ago
- A tool to add simple inline patches to a binary to rearrange its stack frames, and other things!☆46Updated 3 years ago
- Huawei mate 7 TrustZone exploit☆110Updated 10 years ago
- PoC code for CVE-2017-13253☆37Updated 5 years ago
- ☆31Updated 3 weeks ago
- Some glue facilitating remote use of IDA (the Interactive DisAssembler) Python API.☆77Updated 5 years ago
- Tasteless CTF 2019☆20Updated 5 years ago
- A code-searching/completion tool, for IDA APIs☆83Updated 8 months ago
- Interface GDB-GEF with Binary Ninja☆58Updated 4 years ago
- ☆31Updated 5 years ago
- ☆30Updated 6 years ago
- Standalone C version of the MSM8974 TrustZone exploit☆27Updated 5 years ago
- ARM rop chain gadget searcher☆38Updated 7 years ago
- Materials from Fuzzing Bay Area meetups☆68Updated 5 years ago
- IDA+Triton plugin in order to extract opaque predicates using a Forward-Bounded DSE. Example with X-Tunnel.☆56Updated 6 years ago
- Export a binary from ghidra to emulate with unicorn☆27Updated 5 years ago
- A clang analyzer checker that looks for kernel uninitialized memory disclosures to userland.☆58Updated 6 years ago
- practice☆67Updated 5 years ago
- First level taint implementation with qemu for linux user mode☆29Updated 5 years ago