30 open-source projects similar to gsingh93/linux-exploit-dev-env, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Linux Exploit Dev Env alternative.
pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi
A tool for checking the security hardening options of the Linux kernel
Exploit for CVE-2025-39946, a bug in the Linux kernel's net/tls subsystem.
art-kernel-toolkit is a kernel module that can be used to perform actions requiring kernel privileges from userspace. It supports x86_64 and arm64 Android Common Kernels and Linux kernels.
KASLD derandomises the Linux kernel's virtual and physical memory layout as an unprivileged local user.
Detect Linux rootkits which use signals to elevate process privileges.
This project is a technical repository of kernel exploit guides, memory corruption analyses, and archived methods for gaining root access. It serves as a centralized library of security flaws and reproduction steps used for testing system protections and verification. The documentation focuses on the Linux kernel, providing technical breakdowns of how memory management errors and multi-page write techniques allow for the modification of read-only files. It details the use of race conditions to achieve administrative privilege escalation. The repository covers a broad surface of security rese
Blog Post: https://blog.doyensec.com/2025/10/08/ksmbd-3.html
Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
Android kernel exploit for CVE-2025-38352, previously exploited in-the-wild. Targets vulnerable x86_64 Linux kernels v5.10.x.
This repository contains useful tools for Linux kernel security research, called the kernelXDK:
Meltdown is a set of software utilities designed to bypass kernel address randomization and dump physical memory to exploit hardware-level security vulnerabilities. It serves as a proof of concept for the Meltdown hardware vulnerability, enabling the reading of protected kernel memory on affected processors. The tool provides capabilities to identify the secret randomization offset of the direct physical map to locate kernel memory. It also includes functionality to export large segments of physical memory into hexdump format for the recovery of sensitive strings and passwords. The project c
Next-Generation Linux Kernel Exploit Suggester
Personal pwning toolset developed/used by myself. Use at your own risk.
A lightweight kernel coverage runner that wraps any command powered by LD_PRELOAD for fork/pthread interception using KCOV & HW Trace Buffer.
Exploits for a couple of forever-day bugs in the ARM Mali Utgard GPU kernel driver - as seen in DistrictCon 1.0 Junkyard!
Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver
A tool to recover a fully analyzable .ELF from a raw kernel, through extracting the kernel symbol table (kallsyms)
gdb-pt-dump is a gdb script to enhance debugging of a QEMU-based virtual machine.
Research artifacts, PoC scripts, and lab assets for the Copy Fail Linux local privilege escalation writeup on https://4xura.com/binex/kernel/copy-fail