Stars
A guide to the adventurer.
Patch your macOS kernel to enable support for the high-resolution timers on M1
magic-trace collects and displays high-resolution traces of what a process is doing
This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.
Package Binary Code as a Python class using Binary Ninja and Unicorn Engine
GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares
Here is some resources about macOS/iOS system security.
Docs and resources on CPU Speculative Execution bugs
A plugin to introduce interactive symbols into your debugger from your decompiler
weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.
⚙️ A collection of non-jailbroken code snippets on reverse-engineered iOS private apis
A collection of links related to Linux kernel security and exploitation
Fuzzing JavaScript Engines with Aspect-preserving Mutation
An updated collection of resources targeting browser-exploitation.
A plugin for Hex-Ray's IDA Pro and radare2 to export the symbols recognized to the ELF symbol table
Cmd.exe Command Obfuscation Generator & Detection Test Harness
symbolic execution plugin for binary ninja
Get a job from Xuanwu Lab in 365 days
Anything about kernel security. CTF kernel pwn, kernel exploit, kernel fuzz and kernel defense paper, kernel debugging technique, kernel CVE debug.
Here record some tips about pwn. Something is obsoleted and won't be updated. Sorry about that.
Build a database of libc offsets to simplify exploitation