sslab-gatech / Archeap
ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
Stars: ✭ 80
Programming Languages
c
50402 projects - #5 most used programming language
Labels
Projects that are alternatives of or similar to Archeap
Reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+1117.5%)
Mutual labels: fuzzing
Awesome Directed Fuzzing
A curated list of awesome directed fuzzing research papers
Stars: ✭ 77 (-3.75%)
Mutual labels: fuzzing
Afl Compiler Fuzzer
Variation of american fuzzy lop for testing compilers for C-like languages, revised by Alex Groce & collaborators to fuzz tools processing source code in C-like languages
Stars: ✭ 47 (-41.25%)
Mutual labels: fuzzing
Randomjson
Provides a Kotlin/Java library to create a random json string
Stars: ✭ 70 (-12.5%)
Mutual labels: fuzzing
Baresifter
A bare-metal x86 instruction set fuzzer a la Sandsifter
Stars: ✭ 33 (-58.75%)
Mutual labels: fuzzing
Storm
A blackbox mutational fuzzer for detecting critical bugs in SMT solvers
Stars: ✭ 79 (-1.25%)
Mutual labels: fuzzing
Honeybee
An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite
Stars: ✭ 63 (-21.25%)
Mutual labels: fuzzing
Rfsec Toolkit
RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集,可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith
Stars: ✭ 1,085 (+1256.25%)
Mutual labels: fuzzing
Boofuzz
A fork and successor of the Sulley Fuzzing Framework
Stars: ✭ 1,180 (+1375%)
Mutual labels: fuzzing
Optee fuzzer
This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.
Stars: ✭ 78 (-2.5%)
Mutual labels: fuzzing
Elmyr
A utility to make Kotlin/Java tests random yet reproducible
Stars: ✭ 68 (-15%)
Mutual labels: fuzzing
Brundlefuzz
BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.
Stars: ✭ 78 (-2.5%)
Mutual labels: fuzzing
Testing Distributed Systems
Curated list of resources on testing distributed systems
Stars: ✭ 1,187 (+1383.75%)
Mutual labels: fuzzing
ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
Environment
- Tested on Ubuntu 16.04 64bit
Installation
$ ./setup.sh
$ ./install_dependencies.sh
$ ./build.sh
Installation using Docker
$ ./setup.sh
$ docker build -t archeap .
$ docker run -it archeap /bin/bash
How to use
Please check our artifact.
Trophies
- Overlapping chunks with double free in mimalloc
- Overlapping chunks with double free in DieHarder
- Overlapping chunks with negative size allocation in mesh
- Arbitrary chunks with overflow in ptmalloc2
- Several other techniques
Authors
- Insu Yun ([email protected])
- Dhaval Kapil ([email protected])
- Taesoo Kim ([email protected])
Publications
@inproceedings{yun:archeap,
title = {{Automatic Techniques to Systematically Discover New Heap Exploitation Primitives}},
author = {Insu Yun and Dhaval Kapil and Taesoo Kim},
booktitle = {Proceedings of the 29th USENIX Security Symposium (Security)},
month = aug,
year = 2020,
}
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].