Function Prefixing for IDA Pro

A kAFL based hypervisor fuzzer which fully supports nested VMs

Tutorial on Symbolic Execution. Hands-on session is based on the angr framework.

A fuzzing framework for network servers

To visualize function call flow for a C/C++ program using gdb and python

Ghidra/IDA Pro plugins to load similarity result from binaryai.net

Produce code coverage results with gcov from afl-fuzz test cases

Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)

IDA script for parsing kallsyms

Detecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)

A gdb command to inspect the size of objects on the stack

A multi-platform fuzzer for poking at userland binaries, network clients and servers

angr's exploration technique to perform taint analysis

Hex-Rays Block Highlighter plugin for IDA to highlight if/for/do/switch/while blocks

idapm is IDA Plugin Manager via GitHub Repository.

Fork Free Fail Repeat

a browser fuzzer

Fuzzle: Making a Puzzle for Fuzzers (ASE'22)

I will provide details and pocs for some bugs I found.

基于angr的污点分析引擎

IDA Python3 Plugin to make your RE life easier. Trace execution and save code/memory for detailed exploration.

AFL fuzzing coverage CFG visualization

IRPT: The Art, Science, and Engineering of Windows driver fuzzing

An evolutionary, coverage-guided greybox network protocol fuzzer