Multi-arch docker image with ffmpeg/ffprobe binaries built as hardened static PIE binaries with no external dependencies

Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)

Moved: https://codeberg.org/koutheir/binary-security-check

Some notes + exercises that I've done during my study for the Offensive Security Exploit Developer.

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

The project collects the gadgets and records the time to obtain gadgets from a process by utilizing an attack technique called Just-In-Time Return-Oriented Programming (JIT-ROP). We utilize the JIT-ROP technique to evaluate different fine-grained address space layout randomization (ASLR) schemes and measure the upper bound of effective re-random…

File Capability Extractor

ASLR Disabler (x86 / x64) - Little utility for disabling the ASLR on PE files

Dynamic loading with privilege separation

libc_database python wrapper for exploit automation

LD_PRELOADed library to randomize malloc and friends.

Run program without ASLR (supports Linux and macOS)

Repo code for the related post on SecSI Blog: https://secsi.io/blog/blueborne-kill-chain-on-dockerized-android

Check various security hardening features on ELF, PE and Mach-O binaries

collection of articles of random topics for private research purposes

Modern Binary Exploitation write-ups.

Shell script to launch a Bash instance, from which all child processes will have ASLR disabled

Removes ASLR in iOS applications

Deep dives into ASLR and stack overflow vulnerabilities.

Buffer Overflow attacks on Linux