saaramar

followers

following

stars

https://saaramar.github.io/Publications/

Saar Amar's starred repositories

pwntools

CTF framework and exploit development library

Language:PythonNOASSERTION12108 288 1056

ipwndfu

open-source jailbreaking tool for many iOS devices

Language:PythonGPL-3.07094 378 279

pcileech

Direct Memory Access (DMA) Attack Software

Language:CAGPL-3.04998 148 285

PongoOS

pongoOS

Language:CNOASSERTION2506 266 95

security-research-pocs

Proof-of-concept codes created as part of security research done by Google Security Team.

Language:C++Apache-2.01861 1720

snmalloc

Message passing based allocator

Language:C++MIT1577 39 121

MSRC-Security-Research

Security Research from the Microsoft Security Response Center (MSRC)

Language:PythonCC-BY-4.01324 192 9

vmware_escape

VMware Escape Exploit before VMware WorkStation 12.5.5

Language:C909 43 4

pcileech-fpga

FPGA modules used together with the PCILeech Direct Memory Access (DMA) Attack Software

Language:Verilog894 46 171

linux-m1

Linux kernel source tree

Language:CNOASSERTION874 520

s6_pcie_microblaze

PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for links and info

Language:C739 490

ctf-tasks

An archive of low-level CTF challenges developed over the years

Language:PythonApache-2.0606 300

applegpu

Apple G13 GPU architecture docs and tools

Language:HTMLBSD-3-Clause549 22 17

shadow

jemalloc heap exploitation framework

Language:PythonNOASSERTION447 47 19

win32k-bugs

Dump of win32k POCs for bugs I've found

Language:C++370 26 1

winipt

The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by Windows 10 Redstone 5 (1809), through a set of libraries and a command-line tool.

Language:CBSD-2-Clause365 29 12

Simpleator

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

Language:C++335 33 6

psychicpaper

iOS <13.5 sandbox escape/entitlement 0day

Language:CMPL-2.0330 20 5

blanket

CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.

Language:C246 15 3

PS4-4.55-Kernel-Exploit

A fully implemented kernel exploit for the PS4 on 4.55FW

Language:JavaScript239 44 2

hdk

(unofficial) Hyper-V® Development Kit

Language:CNOASSERTION215 19 1

libkrw

Lib kernel r/w

Language:CMIT191 10 1

LiveCloudKd

Hyper-V Research is trendy now

Language:CGPL-3.0171 11 3

GuardMon

Hypervisor based tool for monitoring system register accesses.

Language:C++MIT141 20 9

cheriot-rtos

The RTOS components for the CHERIoT research platform

Language:C++MIT131 14 46

l1tf-poc

L1TF (Foreshadow) VM guest to host memory read PoC

Language:CMIT112 8 2

i9300_emmc_toolbox

Samsung Galaxy S3 GT-I9300 eMMC toolbox

Language:CGPL-3.098 17 18

35c3ctf-challs

Language:Python88 110

cheriot-ibex

cheriot-ibex is a RTL implementation of CHERIoT ISA based on LowRISC's Ibex core.

Language:SystemVerilogApache-2.078 15 39

cheriot-sail

Sail code model of the CHERIoT ISA

Language:TeXNOASSERTION34 10 36