IOActive, Inc.

IOActive, Inc.'s repositories

jdwp-shellifier

Language:PythonMIT808 49 6

XDiFF

Extended Differential Fuzzing Framework

Language:Python319 22 2

RepoSsessed

A project designed to parse public source code repositories and find various types of vulnerabilities.

Language:Shell189 15 2

laf

This project intends to provide a series of tools to craft, parse, send, analyze and crack a set of LoRaWAN packets in order to audit or pentest the security of a LoraWAN infrastructure.

Language:PythonBSD-3-Clause164 23 7

I-know-where-your-page-lives

I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016

Language:C++158 170

Melkor_ELF_Fuzzer

Melkor is a very intuitive and easy-to-use ELF file format fuzzer to find functional and security bugs in ELF parsers.

Language:CGPL-3.0148 170

Platbox

UEFI and SMM Assessment Tool

Language:PythonMIT147 11 8

FuzzNDIS

A Fuzzer for Windows NDIS Drivers OID Handlers

Language:C90 10 3

kmdf_re

Helper idapython code for reversing kmdf drivers

Language:C61 9 3

BlueCrawl

Frida (Android) Script for extracting bluetooth information

Language:JavaScript60 5 1

AOSP-DownloadProviderDbDumperSQLiWhere

PoC Exploiting SQL Injection in Android's Download Provider in Selection Parameter (CVE-2019-2198)

Language:JavaGPL-3.033 4 1

AOSP-ExploitUserDictionary

PoC Exploit for AOSP UserDictionary Content Provider (CVE-2018-9375)

Language:JavaGPL-3.022 60

AOSP-DownloadProviderHijacker

PoC Exploiting Permission Bypass in Android's Download Provider (CVE-2018-9468)

Language:JavaGPL-3.018 40

AutoGadgetFS

USB testing framework

Language:Python15 50

uefi_research

A repository with UEFI research stuff

13 30

Embedded-Defense

Sample embedded defense code for applications written in .NET, Java, PHP and Python.

Language:JavaScriptGPL-3.011 40

AOSP-DownloadProviderDbDumper

PoC Exploiting SQL Injection in Android's Download Provider (CVE-2018-9493)

Language:JavaGPL-3.08 40

AOSP-DownloadProviderHeadersDumper

PoC Exploiting Headers Disclosure in Android's Download Provider (CVE-2018-9546)

Language:JavaGPL-3.07 40

BlackHat_2017

Materials for "Go Nuclear: Breaking Radiation Monitoring Devices"

Language:CGPL-3.06 30

FileSquattingExample

FileSquatting Exploitation by Example

Language:C6 50

pbscan

faster and more efficient stateless syn scanner and banner grabber due to userland TCP/IP stack usage

Language:CMIT5 40

HL7-Fuzzer

An HL7 message fuzzer ( client and server )

Language:PythonMIT4 50

inVtero.net

inVtero.net: Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques

Language:C#4 50