drewbarbs

drewbarbs's Stars

• dotnet/aspnetcore

  ASP.NET Core is a cross-platform .NET framework for building modern cloud-based web applications on Windows, Mac, or Linux.

  Language:C#36.3k1.4k36.3k10.3k

• sysprog21/lkmpg

  The Linux Kernel Module Programming Guide (updated for 5.0+ kernels)

  Language:TeX7.9k15287544

• mobile-dev-inc/Maestro

  Painless E2E Automation for Mobile and Web

  Language:Kotlin7.4k541.1k357

• AFLplusplus/LibAFL

  Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

  Language:Rust2.2k26609348

• airbus-seclab/qemu_blog

  A series of posts about QEMU internals:

  1.4k455150

• 0xricksanchez/paper_collection

  Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

  Language:Python1.3k1031125

• lokesh-krishna/dotfiles

  My dotfiles

  Language:HTML1.2k101748

• google/fuzztest

  Language:C++801186481

• mahaloz/decomp2dbg

  A plugin to introduce interactive symbols into your debugger from your decompiler

  Language:Python645114540

• VFansss/mgs2-v-s-fix

  Unofficial fix for PC version of Metal Gear Solid 2

  Language:C#5702819623

• quarkslab/binbloom

  Raw binary firmware analysis software

  Language:C521241057

• bet4it/udbserver

  Unicorn Emulator Debug Server - Written in Rust, with bindings for C, Go, Java and Python

  Language:Rust363101358

• nccgroup/Cartographer

  Code Coverage Exploration Plugin for Ghidra

  Language:Java34210830

• FrenchYeti/interruptor

  Human-friendly cross-platform system call tracing and hooking library based on Frida's Stalker

  Language:TypeScript339151245

• LdB-ECM/Raspberry-Pi

  My public Baremetal Raspberry Pi code

  Language:C314213359

• davidmalcolm/antipatterns.ko

  The world's worst kernel module

  Language:C298536

• fgsect/FitM

  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.

  Language:C2879920

• LionyxML/auto-dark-emacs

  Auto-Dark-Emacs is an auto changer between 2 themes, dark/light, following MacOS, Linux or Windows Dark Mode settings

  Language:Emacs Lisp17243134

• martinradev/gdb-pt-dump

  Language:Python15462228

• HexHive/datAFLow

  A data-flow-guided fuzzer

  Language:Faust1176410

• NSEcho/furlzz

  Fuzz iOS URL schemes

  Language:Go1133311

• gamozolabs/rv32i_jit

  A super simple RV32i JIT, designed for ease of understanding and modification

  Language:C84508

• borzacchiello/naaz

  Symbolic Execution Engine based on Ghidra's PCode

  Language:C++82705

• Myldero/kernelinit

  A tool for automating setup of kernel pwn challenges

  Language:C55223

• silverweed/tiers

  Offline and minimalist Tierlist maker

  Language:JavaScript4521014

• kquann/FBV_MIDI

  Full functionality from Line 6 FBV foot controller using Python and Arduino

  Language:Python26445

• RICSecLab/AFLplusplus-cs

  Language:C18502

• rasmartins/fbv2kpa

  Hardware/software adapter to use the Line 6 FBV Express™ MkII with the Kemper Profiler

  Language:C15320

• Mario-Kart-Felix/driver-for-fuzzer

  USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation Authors: Hui Peng, Purdue University; Mathias Payer, EPFL Abstract: The Universal Serial Bus (USB) connects external devices to a host. This interface exposes the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels and drivers were developed under a security model that implicitly trusts connected devices. Drivers expect faulty hardware but not malicious attacks. Similarly, security testing drivers is challenging as input must cross the hardware/software barrier. Fuzzing, the most widely used bug finding technique, relies on providing random data to programs. However, fuzzing device drivers is challenging due to the difficulty in crossing the hardware/software barrier and providing random device data to the driver under test. We present USBFuzz, a portable, flexible, and modular framework for fuzz testing USB drivers. At its core, USBFuzz uses a software-emulated USB device to provide random device data to drivers (when they perform IO operations). As the emulated USB device works at the device level, porting it to other platforms is straight-forward. Using the USBFuzz framework, we apply (i) coverage-guided fuzzing to a broad range of USB drivers in the Linux kernel; (ii) dumb fuzzing in FreeBSD, MacOS, and Windows through cross pollination seeded by the Linux inputs; and (iii) focused fuzzing of a USB webcam driver. USBFuzz discovered a total of 26 new bugs, including 16 memory bugs of high security impact in various Linux subsystems (USB core, USB sound, and network), one bug in FreeBSD, three in MacOS (two resulting in an unplanned reboot and one freezing the system), and four in Windows 8 and Windows 10 (resulting in Blue Screens of Death), and one bug in the Linux USB host controller driver and another one in a USB camera driver. From the Linux bugs, we have fixed and upstreamed 11 bugs and received 10 CVEs.

  Language:Java5200

• rienheuver/deleteclip-ableton

  A simple remote script for ableton to delete the currently selected clip

  Language:Python2101