ajax4sec's repositories
ajax4sec.github.io
my blog
AttackDetection
Attack Detection
aurora
Fork from Usenix Security 2021 - AURORA: Statistical Crash Analysis for Automated Root Cause Explanation
BinaryCodeSummary
Binary Code Summarization
constantine
Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels
exploit_mitigations
Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
JulietTestSuite
Juliet Test Suite for C/C++ imported from https://samate.nist.gov/SARD/testsuite.php
mi-x
Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)
ModX
Anonymous experiments data share
OctoPoCs
Automatic PoC Generator for OSS
PromptFuzz
PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' prompts.
ROP_ROCKET
ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Syscalls attack, a novel Heaven's Gate, and "shellcodeless" ROP. The framework utilizes emulation and obfuscation to help expand the attack surface.
sandsifter
The x86 processor fuzzer
SivoFuzzer
Gray-box fuzzer SIVO
snapchange
Lightweight fuzzing of a memory snapshot using KVM
SUTURE
Precise and high-order static points-to/taint analysis based on LLVM IR.
Taint-Evaluator
A suite of experiments for evaluating open-source binary taint trackers.
watchvuln
一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
xrop
Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC