Stars
arbitrary kernel read/write in dbutil_2_3.sys, Proof of Concept Local Privilege Escalation to nt authority/system
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
Snapshot-based coverage-guided windows kernel fuzzer
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-m…
Full-chain RCE exploit for Source Engine games
PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components
Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
This is an exploit for CVE-2020-0674 that runs on the x64 version of IE 8, 9, 10, and 11 on Windows 7.
A True Instrumentable Binary Emulation Framework
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Manul is a coverage-guided parallel fuzzer for open-source and blackbox binaries on Windows, Linux and MacOS
INACTIVE - http://mzl.la/ghe-archive - A Python3 bridge for implementing custom libFuzzer mutators
AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.
AFL + DynamoRIO = fuzzing binaries with no source code on Linux
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper us…
Binary Ninja plugin that syncs WinDbg to Binary Ninja
A Javascript library for browser exploitation
A Coverage Explorer for Reverse Engineers
Some C++ example code to demonstrate how to perform code similarity searches using SimHashing.
A fork of AFL for fuzzing Windows binaries
Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.