Use LLMs to rank anything.

Automatic Exploit Generation with LLMs

Low-Level Software Security for Compiler Developers

An ergonomic and safe syscall interception framework for Linux.

Fast plugin-based fuzzer compatible with Intel x86 and x86_64

Dynamic binary translator for x86 binaries

An ebook about bare-metal programming for ARM

Examples for: Learning KVM - implement your own kernel

Advanced Operating System Course at ETHZ

Breaking Confidential VMs with Malicious Interrupts (USENIX Security 2024)

Demo showing Claude Opus does not find CVE-2023-0266

SyzBridge is a research project that adapts Linux upstream PoCs to downstream distributions. It provides rich interfaces that allow you to do a lot of cool things with Syzbot bugs

Blazingly 🔥 fast 🚀 memory vulnerabilities, written in 100% safe Rust. 🦀

CVEs for the Rust standard library

A local-first personal finance app

C Bounded Model Checker

🕵️‍♂️ Collect a dossier on a person by username from thousands of sites

Go assembly and source viewer

Monitor Network Traffic Per Executable, Beautifully Visualized

A collection of my Semgrep rules to facilitate vulnerability research.

EMBA - The firmware security analyzer

Quickly debug shellcode extracted during malware analysis

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Code Coverage Exploration Plugin for Ghidra

Domain-specific infrastructure for analyzing, generating, and manipulating syntactically correct but semantically spec-non-compliant video files.

Lightweight fuzzing of a memory snapshot using KVM

Kubernetes Security Training Platform - focusing on security mitigation

Useful scripts for WinDbg using the debugger data model

ZITADEL - Identity infrastructure, simplified for you.