/NULLGuard

kext kills all 32bit binaries lacking __PAGEZERO (required for exploitation of kernel NULL derefs)

Primary LanguageC

NULLGuard

This prevents binaries lacking __PAGEZERO from running.

Among other things, it fixes tpwn and renders a ton of bugs unexploitable.

note: some older binaries (10.4?) could also be affected, but I haven't yet encountered a non-malicious binary lacking PAGEZERO.