Multi-arch docker image with ffmpeg/ffprobe binaries built as hardened static PIE binaries with no external dependencies

Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)

Some notes + exercises that I've done during my study for the Offensive Security Exploit Developer.

Moved: https://codeberg.org/koutheir/binary-security-check

Red-team tool to hook libc read syscall with a buffer overflow vulnerability.

ASLR Disabler (x86 / x64) - Little utility for disabling the ASLR on PE files

File Capability Extractor

Run program without ASLR (supports Linux and macOS)

Dynamic loading with privilege separation

Check various security hardening features on ELF, PE and Mach-O binaries

Check to ASLR from Windows x86 EXE file and disable it.

collection of articles of random topics for private research purposes

libc_database python wrapper for exploit automation

The project collects the gadgets and records the time to obtain gadgets from a process by utilizing an attack technique called Just-In-Time Return-Oriented Programming (JIT-ROP). We utilize the JIT-ROP technique to evaluate different fine-grained address space layout randomization (ASLR) schemes and measure the upper bound of effective re-random…

LD_PRELOADed library to randomize malloc and friends.

Shell script to launch a Bash instance, from which all child processes will have ASLR disabled

Buffer Overflow attacks on Linux

Modern Binary Exploitation write-ups.

Examining overflow exploits in C programs, and the various protection mechanisms that tries to prevent them.

My assignments on GDB and Computer Architecture; Buffer Overflow; Stack Overflow and ROP gadgets; ASLR; Heap Overflow; Type Confusion; Injection Attack; Fuzzing.