0vercl0k

US/FR

Pinned Repositories

clairvoyance
Visualize the virtual address space of a Windows process on a Hilbert curve.
Language:C++297 10 222
CVE-2019-11708
Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.
Language:JavaScript619 19 181
CVE-2021-24086
Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.
Language:Python231 6 249
CVE-2021-31166
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
Language:Python822 23 7139
CVE-2022-21971
PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
Language:Rich Text Format307 10 064
rp
rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
Language:C++1.9k 69 27256
stuffz
Basically a script thrift shop
Language:C589 61 7126
windbg-scripts
A bunch of JavaScript extensions for WinDbg.
Language:JavaScript325 16 347
wtf
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-mode (experimental!).
Language:C++1.5k 22 136133
z3-playground
A repository to store Z3-python scripts you can use as examples, reminders, whatever.
Language:Python274 20 526

0vercl0k's Repositories

0vercl0k/rp
rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
Language:C++1.9k 69 27256
0vercl0k/wtf
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-mode (experimental!).
Language:C++1.5k 22 136133
0vercl0k/stuffz
Basically a script thrift shop
Language:C589 61 7126
0vercl0k/windbg-scripts
A bunch of JavaScript extensions for WinDbg.
Language:JavaScript325 16 347
0vercl0k/CVE-2022-21971
PoC for CVE-2022-21971 "Windows Runtime Remote Code Execution Vulnerability"
Language:Rich Text Format307 10 064
0vercl0k/udmp-parser
A Cross-Platform C++ parser library for Windows user minidumps with Python 3 bindings.
Language:C++199 10 423
0vercl0k/kdmp-parser
A Windows kernel dump C++ parser library with Python 3 bindings.
Language:C++195 16 1329
0vercl0k/symbolizer
A fast execution trace symbolizer for Windows.
Language:C++130 8 326
0vercl0k/zenith
Zenith exploits a memory corruption vulnerability in the NetUSB driver to get remote-code execution on the TP-Link Archer C7 V5 router for Pwn2Own Austin 2021.
Language:Python123 5 024
0vercl0k/snapshot
WinDbg extension written in Rust to dump the CPU / memory state of a running VM
Language:Rust115 4 37
0vercl0k/rp-bf.rs
rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
Language:Rust112 3 210
0vercl0k/fuzzing-ida75
Repository of the findings found by wtf when fuzzing IDA75.
87 5 07
0vercl0k/paracosme
Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stage during the Pwn2Own Miami 2022 competition.
Language:Python87 3 321
0vercl0k/symbolizer-rs
A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
Language:Rust86 1 411
0vercl0k/CVE-2022-28281
PoC for CVE-2022-28281 a Mozilla Firefox Out of bounds write.
Language:HTML74 3 113
0vercl0k/lockmem
This utility allows you to lock every available memory regions of an arbitrary process into its working set.
Language:C++67 6 315
0vercl0k/pwn2own2023-miami
Writeups, PoCs of the bugs I found while preparing for the Pwn2Own Miami 2023 contest targeting UaGateway from the OPC UA Server category.
Language:C++60 2 16
0vercl0k/CVE-2022-21974
PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"
Language:Rich Text Format59 4 012
0vercl0k/CVE-2021-32537
PoC for CVE-2021-32537: an out-of-bounds memory access that leads to pool corruption in the Windows kernel.
Language:C++57 6 013
0vercl0k/udmp-parser-rs
A Rust crate for parsing Windows user minidumps.
Language:Rust40 3 12
0vercl0k/inject
Yet another Windows DLL injector.
Language:C++38 5 012
0vercl0k/kdmp-parser-rs
A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.
Language:Rust31 3 25
0vercl0k/KEPaboo
Neutralize KEPServerEX anti-debugging techniques
Language:C++31 2 05
0vercl0k/longue-vue
Longue vue is an exploit chain that can compromise over the internet NETGEAR DGND3700v2 devices.
Language:JavaScript25 3 04
0vercl0k/dbgeng-rs
Rust binding for the dbgeng COM interfaces.
Language:Rust11 2 03
0vercl0k/teesee-calc
Visualize and compare total compensation (TC) packages over time.
Language:HTML11 3 9
0vercl0k/0vercl0k
5 2 0
0vercl0k/addr-symbolizer-rs
A KISS Rust crate to symbolize function addresses using Windows PDB files
Language:Rust5 3 11
0vercl0k/gflags-rs
Utility that lets you interact with Microsoft Windows Global Flags and particularly PageHeap, made to learn Rust
Language:Rust4 2 01
0vercl0k/LibAFL
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...