setproctitle() for Go

Framework for Automating Fuzzable Target Discovery with Static Analysis.

PoC for CVE-2022-28281 a Mozilla Firefox Out of bounds write.

Some setup scripts for security research tools.

Defund the Police.

PoC for CVE-2021-28476 a guest-to-host "Hyper-V Remote Code Execution Vulnerability" in vmswitch.sys.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Project for learning V8 internals

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

The Python micro framework for building web applications.