zhouat

cve-2017-11882

0d1n

Web security tool to make fuzzing at HTTP/S, Beta

ASLRay

Linux ELF x32 and x64 ASLR bypass exploit with stack-spraying

ChakraCore

ChakraCore is the core part of the Chakra Javascript engine that powers Microsoft Edge

CVE

CVE-2017-11883

Proof-of-Concept exploits for CVE-2017-11882

CVE-2017-8759-Exploit-sample

Running CVE-2017-8759 exploit sample.

cvelist

Pilot program for CVE submission through GitHub

HackSysExtremeVulnerableDriver

HackSys Extreme Vulnerable Windows Driver

how2heap

A repository for learning various heap exploitation techniques.

inline-hook

simple inline-hook framework works for x86, x64, arm and thumb

INTANG

linux-kernel-exploitation

A bunch of links related to Linux kernel exploitation

Lipland

A lightweight plug-in framework for Android.

mgalgs.github.io

My blog thing

ply

iovisor/ply is the repo of record for ply

PoC

PoC of CVE/Exploit

poc_IM

puppeteer

Headless Chrome Node API

RamFuzz

A fuzzer for individual method parameters.

re2c

lexer generator for C/C++

sanitizers

AddressSanitizer, ThreadSanitizer, MemorySanitizer

sqliv

(SQLiv) massive SQL injection vulnerability scanner

StepChanger

步数修改器

swap_digger

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

syzkaller

syzkaller is an unsupervised, coverage-guided Linux system call fuzzer

teste

TraceReader

ddms method profiling trace

win_dbg

ziVA

An iOS kernel exploit designated to work on all iOS devices <= 10.3.1