👓A collection of papers/tools/exploits for UEFI security.

Typora主题css样式

PC firmware exploitation tool and library

ToolSet for VxWorks Based Embedded Device Analyses

A Miasm2 based function divination.

A tool to unpack installers created by Inno Setup

A firmware base address search tool.

Started as arbitrary System Management Mode code execution exploit for Lenovo ThinkPad model line, ended as exploit for industry-wide 0day vulnerability in machines of many vendors

The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.

DOM fuzzer

Scalable fuzzing infrastructure.

A JavaScript Engine Fuzzer

CTF竞赛权威指南

The official mirror of the V8 Git repository

Resources related to GitHub Security Lab

我在学习浏览器安全过程中整理的漏洞分析笔记与相关的学习资料

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Some helpful preload libraries for pwning stuff.

A de-socketing tool that is 10x faster than desock (Preeny) in fuzzing network protocols

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

american fuzzy lop - a security-oriented fuzzer

A little bit about a linux kernel

Linux 内核揭秘

A CSS style for Typora

Script for searching the extracted firmware file system for goodies!

IDA plugin for UEFI firmware analysis and reverse engineering automation