"topic:aslr" — Search

The project collects the gadgets and records the time to obtain gadgets from a process by utilizing an attack technique called Just-In-Time Return-Oriented Programming (JIT-ROP). We utilize the JIT-ROP technique to evaluate different fine-grained address space layout randomization (ASLR) schemes and measure the upper bound of effective re-randomization intervals. Our evaluation and measurements have been published in ACM CCS 2020. We implement a native version of the JIT-ROP technique.

HTML201Updated 1 year ago

aslrfine-grained-aslrgadgetjit-ropre-randomizationropsecurity-tools

adamhlt/ASLR-Disabler

ASLR Disabler (x86 / x64) - Little utility for disabling the ASLR on PE files

C++165Updated 2 months ago

aslrguiimguiwinapiwindows

marirs/capa-rs

File Capability Extractor

Rust144Updated 4 months ago

aslrcapacapabilitiescontrol-flow-graphfile-capabilitiesmalware-analysismbcmitrereverse-engineeringrustrust-langrust-libraryseh

topimiettinen/ld-so-daemon

Dynamic loading with privilege separation

C102Updated 3 months ago

aslrcdynamic-loadingelf-loaderhardeninglinuxprivilege-separationseccompsecurity

koczkatamas/checksec-js

Check various security hardening features on ELF, PE and Mach-O binaries

JavaScript71Updated 7 months ago

aslrbinarycanarychecksecelfhardeningmach-opepierelrorpathrunpathstack-protector

Neetx/pylibcdb

libc_database python wrapper for exploit automation

Python71Updated 1 year ago

aslrexploitexploit-developmentlibc-databasepythonrop-chain

kccqzy/no-aslr

Run program without ASLR (supports Linux and macOS)

C73Updated 6 months ago

aslrlinuxmacos

cybersecsi/blueborne-dockerized

Repo code for the related post on SecSI Blog: https://secsi.io/blog/blueborne-kill-chain-on-dockerized-android

Python71Updated 1 year ago

androidaslraslr-bypassbluebornebluetoothcontainerdockerexploitsecsi

topimiettinen/libaslrmalloc

LD_PRELOADed library to randomize malloc and friends.

C61Updated 7 months ago

aslrchardeninglinuxmalloc-librarymemorysecurity

0xricksanchez/articles

collection of articles of random topics for private research purposes

Python61Updated 6 months ago

articleaslraslr-bypasscanaryexecutionexploitationiotnetworknxpreventionprinterprotocolpwnableresearchshodan

JElchison/launch-bash-without-aslr

Shell script to launch a Bash instance, from which all child processes will have ASLR disabled

Shell30Updated 4 years ago

aslrbashbash-hacksbash-scriptctfexploit-developmentexploit-exercisesexploitationshell

alisatodorova/Software-Vulnerabilities

My assignments on GDB and Computer Architecture; Buffer Overflow; Stack Overflow and ROP gadgets; ASLR; Heap Overflow; Type Confusion; Injection Attack; Fuzzing.

Python20Updated 11 months ago

aslrbuffer-overflowcybersecurityexploitationfuzzinggdbheap-overflowinjection-attackmitigationrop-gadgetssoftware-vulnerabilitiesstack-overflowtype-confusion

medaminkh-dev/Raw_Overflow_Forge

ROF - Raw Overflow Forge 🔥 An all-in-one ROP exploitation engine that automates binary analysis, gadget extraction, and payload generation. Perfect for CTF challenges, security research, and learning return-oriented programming techniques.

Python20Updated 1 month ago

aslrbinaryexploitationbufferoverflowdepexploitdevelopmentgadgetchainingmemorycorruptionnxbypasspierelroreturnorientedprogrammingropstackcanarystackoverflow

GB102/Heap-Feng-Shui-Dojo

A simple Heap-based Buffer Overflow(with RCE)-vulnerable application and POC for Windows.

C++10Updated 6 months ago

aslraslr-bypassbinary-exploitationbuffer-overflowfeng-shuiheapheap-exploitationwindows

shubhangamjha/Google---American-Sign-Language-Fingerspelling-Recognition

Goal of the Competition The goal of this competition is to detect and translate American Sign Language (ASL) fingerspelling into text. You will create a model trained on the largest dataset of its kind, released specifically for this competition.

Jupyter Notebook10Updated 11 months ago

aslrkaggle

pengbomb/aslr-checker

Check to ASLR from Windows x86 EXE file and disable it.

C++01Updated 3 years ago

aslrcpp

vladyslav-panchenko280/linux-core-security

Linux hardening best practices with Docker, automated patching, ASLR, AppArmor, and continuous security monitoring

Shell00Updated 3 months ago

apparmoraslrauditdautomated-patchingdevopsdevsecopsdockergrafanalinuxprometheussecurityvulnerability-scanning

akshayxml/Buffer-Overflow-Attacks

Buffer Overflow attacks on Linux

C00Updated 4 years ago

aslrbuffer-overflowbuffer-overflow-attackexploitationheapoverflowret2libcsecuritystackoverflow

KOLANICH-libs/Hardening.cmake

A module for CMake to enable various mitigations implemented in compilers

CMake00Updated 4 years ago

aslrdephardeningload-value-injectionlvepicpieretpolinespectre

udoprog/overflow-exploitsArchived

Examining overflow exploits in C programs, and the various protection mechanisms that tries to prevent them.

C00Updated 3 years ago

aslroverflowsecurity

Dor-sketch/ASLR-StackSecDemos

Deep dives into ASLR and stack overflow vulnerabilities.

C++00Updated 2 years ago

aslrattack-examplebuffer-overflow-attackdefensive-programmingstackoverflowvulnerabilitiesvulnerability-assessment

kbmclaren/lab1-CMSC426-CmpSec

This lab required the execution of a buffer-overflow attack variant, known as return-to-libc, bypassing existing protection schemes implemented in Linux OS.

C00Updated 4 years ago

32-bitaslrbuffer-overflowinputlibclinuxreturn-to-libcstack-protectorstackguardstackoverflowubuntuvm