The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

An IDA plugin that allows you call IDA python APIs from remote.

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5

XNU kernel, Kernel Collection and CodeQL build scripts

LPE exploit for CVE-2023-21768

Connect your devices into a secure WireGuard®-based overlay network with SSO, MFA and granular access controls.

A Smart Ethernet Switch for Earth

你管这破玩意叫操作系统源码 — 像小说一样品读 Linux 0.11 核心代码

CVE-2022-31705 (Geekpwn 2022 Vmware EHCI OOB) POC

LibAFL components for stateful fuzzing

weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.

High-performance QEMU memory and instruction tracing

race condition in apport lead to Local Privilege Escalation on Ubuntu

An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer.

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.

A collection of LLDB aliases/regexes and Python scripts to aid in your debugging sessions

Fugu14 is an untethered iOS 14.3-14.5.1 jailbreak

A binary authorization and monitoring system for macOS

《Chrome V8源码》系列技术文章，3~4天一篇，持续更新中

Snapshot fuzzing with KVM and LibAFL

How to exploit a double free vulnerability in 2021. Use After Free for Dummies

A Dolev-Yao-model-guided fuzzer for TLS

Pwn stuff.

Small programs and scripts that do not require their own repositories