Alternatives and similar repositories for kheap_sift

Users that are interested in kheap_sift are comparing it to the libraries listed below

• sefcom / RetSpill
  RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections
  ☆63Updated last year
• arttnba3 / D3CTF2023_d3kcache
  attachment and write up for D^3CTF 2023's pwn challenge - d3kcache
  ☆41Updated last year
• synacktiv / Weggli_rules_SSTIC2023
  ☆30Updated 2 years ago
• flounderK / linux-kernel-codeql
  ☆16Updated 3 years ago
• AFLplusplus / libafl_qemu_artifacts
  ☆26Updated last year
• seclab-ucr / SyzGen_setup
  ☆47Updated 3 years ago
• ambergroup-labs / papora
  ☆15Updated 2 years ago
• sefcom / KHeaps
  Playing for {K (H) eaps}: Understanding and Improving Linux Kernel Exploit Reliability
  ☆89Updated 3 years ago
• vul337 / KextFuzz
  Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)
  ☆83Updated 2 years ago
• veritas501 / cross_page_attack_demo
  linux kernel cross page attack demo module
  ☆31Updated 2 years ago
• IntelLabs / kafl.targets
  Target components for kAFL/Nyx Fuzzer
  ☆33Updated 2 months ago
• Kyle-Kyle / angry-FSROP
  a new class of file structure attacks
  ☆54Updated 2 years ago
• gfelber / how2keap
  A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
  ☆91Updated 3 weeks ago
• OMH4ck / OnePunch
  ☆40Updated last month
• HexHive / GLeeFuzz
  ☆41Updated 2 years ago
• chenaotian / kdbg
  A gdb plugin for linux kernel.
  ☆28Updated 2 years ago
• RUB-SysSec / JIT-Picker
  ☆69Updated 2 years ago
• Riatre / hso-groupie
  ☆46Updated 3 years ago
• thebabush / afl-libprotobuf-mutator
  AFLplusplus + libprotobuf-mutator = love
  ☆83Updated 5 years ago
• AFLplusplus / qemu-libafl-bridge
  A patched QEMU that exposes an interface for LibAFL-based fuzzers
  ☆83Updated 3 weeks ago
• valour01 / ecmo
  Peripheral Transplantation to Rehost Embedded Linux kernels
  ☆16Updated 3 years ago
• airbus-seclab / AFLplusplus-blogpost
  Blogpost about optimizing binary-only fuzzing with AFL++
  ☆68Updated last year
• mephi42 / initramfs-wrap
  Add debugging tools to an existing initramfs, even if it is for a foreign architecture
  ☆23Updated last year
• veritas501 / pipe-primitive
  An exploit primitive in linux kernel inspired by DirtyPipe
  ☆97Updated 3 years ago
• n132 / BeapOverflow
  A linux exploitation skill facilitates heap address leaking or performs overflow from BSS to heap
  ☆18Updated last year
• arttnba3 / D3CTF2025_d3kheap2
  Attachment and official writeup for D^3CTF 2025's Pwn challenge - d3kheap2
  ☆16Updated 3 months ago
• atredis-jordan / libafl-workshop-blog
  Resources accompanying the LibAFL workshop blog post
  ☆20Updated last year
• borzacchiello / naaz
  Symbolic Execution Engine based on Ghidra's PCode
  ☆84Updated 2 years ago
• Lotuhu / Page-UAF
  Linux kernel privilege escalation techniques
  ☆144Updated last year
• ucsb-seclab / actor
  Source code for ACTOR, an action-guided kernel fuzzer (USENIX 2023 paper)
  ☆36Updated last year