30 open-source projects similar to spencerdodd/kernelpop, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Kernelpop alternative.
Next-Generation Linux Kernel Exploit Suggester
linux-exploit-suggester is a diagnostic utility and vulnerability scanner designed to identify potential kernel exploits on Linux systems. It functions as a privilege escalation auditor by matching system information and kernel versions against a database of known security flaws. The tool differentiates itself by filtering and ranking exploits based on specific system properties and runtime security configurations. It evaluates kernel hardening settings, such as memory protection mechanisms, to discard inapplicable exploits and prioritize candidates by their probability of success. The softw
This project is a set of specialized utilities for Windows vulnerability assessment and patch management auditing. It functions as a vulnerability scanner and exploit suggester that analyzes installed updates to identify missing security patches and their corresponding known vulnerabilities. The system distinguishes itself by matching missing updates against a consolidated vulnerability database to recommend specific publicly available exploits. It maintains accuracy by synchronizing remote security bulletins into a local database and cross-referencing identified gaps against official update
pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi
IntruderPayloads is a collection of curated fuzzing lists, security wordlists, and a vulnerability research dataset. It provides sets of strings and patterns designed to discover undocumented pages, directories, and hidden content on web servers. The project includes a payload collection specifically for Burp Suite Intruder and other web security tools, as well as a library of specially crafted files used to test for remote code execution and insecure file upload vulnerabilities. It also provides a web pentesting methodology consisting of structured checklists and guides for identifying commo
HowToHunt is a bug bounty hunting knowledge base and a structured guide for web application penetration testing. It provides a research methodology for organizing security testing procedures and validating application behaviors against known vulnerability patterns. The project features a curated library of security flaws and reconnaissance techniques. It organizes security testing into modular playbooks, checklists, and categorical vulnerability mappings to align specific exploitation techniques with target weaknesses. The repository covers a systematic sequence of information gathering task
art-kernel-toolkit is a kernel module that can be used to perform actions requiring kernel privileges from userspace. It supports x86_64 and arm64 Android Common Kernels and Linux kernels.
Detect Linux rootkits which use signals to elevate process privileges.
Exploit for CVE-2025-39946, a bug in the Linux kernel's net/tls subsystem.
This repository contains useful tools for Linux kernel security research, called the kernelXDK:
KASLD derandomises the Linux kernel's virtual and physical memory layout as an unprivileged local user.
A tool for checking the security hardening options of the Linux kernel
This project is a bug bounty resource directory, vulnerability research cheatsheet, and web security payload library. It serves as a centralized collection of curated payloads and common attack vectors used to identify security vulnerabilities in web applications. The repository provides a directory of platforms, books, and tools to support vulnerability discovery skills. It includes a reference for tested payloads and techniques used to trigger bugs and identify vulnerabilities during security audits. The content covers web application pentesting, security vulnerability testing, and general
Blog Post: https://blog.doyensec.com/2025/10/08/ksmbd-3.html
Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
some codes and notes about the backdoor listening on TCP-32764 in linksys WAG200G.
Android kernel exploit for CVE-2025-38352, previously exploited in-the-wild. Targets vulnerable x86_64 Linux kernels v5.10.x.
PHP Security Advisories Database
This project is a technical repository of kernel exploit guides, memory corruption analyses, and archived methods for gaining root access. It serves as a centralized library of security flaws and reproduction steps used for testing system protections and verification. The documentation focuses on the Linux kernel, providing technical breakdowns of how memory management errors and multi-page write techniques allow for the modification of read-only files. It details the use of race conditions to achieve administrative privilege escalation. The repository covers a broad surface of security rese
This repository contains several tools Project Zero uses to test iPhone messaging. It includes:
Everything you need to build and run Linux and Android kernels for exploit development
Meltdown is a set of software utilities designed to bypass kernel address randomization and dump physical memory to exploit hardware-level security vulnerabilities. It serves as a proof of concept for the Meltdown hardware vulnerability, enabling the reading of protected kernel memory on affected processors. The tool provides capabilities to identify the secret randomization offset of the direct physical map to locate kernel memory. It also includes functionality to export large segments of physical memory into hexdump format for the recovery of sensitive strings and passwords. The project c
SecLists is a centralized library of security assessment data designed to support vulnerability discovery and penetration testing. It functions as a comprehensive repository of wordlists, payloads, and testing methodologies used to audit software, firmware, and internet-connected hardware for technical vulnerabilities. The project distinguishes itself through a standardized taxonomy and a language-agnostic data format, which allows security tools to predictably ingest and utilize its assets regardless of the underlying programming environment. By decoupling raw testing data from execution log