This is your work, valued

jmpews(AKA.zz)

Elite
@jmpews

_kernproc

Dobby. a lightweight, multi-platform, multi-architecture hook framework.

4.8k

HookZzModules. modules deps on HookZz framework.

530

pwn2exploit. all mine papers, pwn & exploit

404

NoteZ. notebook base on github issue

86

evilELF. Malicious use of ELF such as .so inject, func hook and so on.

77

goscan. golang的扫描框架, 支持协程池和自动调节协程个数.

47

DobbyDrill. hook MachO file based on Dobby (NOT DONE)

45

DyldMachoParser. Macho Parser base on dyld (supported static/runtime)

36

rtspy. runtime spy elf with android/linux and macho with macOS/IOS

36

evilMACHO. Malicious use of macho, such as dump-runtime-macho, function-hook.

15

proxyscanner. 分析协议构造验证数据,采用异步非阻塞socket发送数据,不采用request的方式。

11

torweb. 基于tornado并且有很多trick用法的社区.

9

minihttpd. 用Pure C写的httpd,快速提供web服务。

7

SaitamaCore. [wip] a toy kernel

7

Riru-Il2CppDumper. Using Riru to dump il2cpp data at runtime

7

tornado-project-generator. tornado项目模板

7

linux-insides-zh. Linux 内核揭密

7

Detours-mirror. detours mirror v3.0 Build 343 (microsoft add x64 support)

6

PUBGKit. pubg kit = {crouch jump, remove grass, ...}

5

jmpews.github.io. Zz...

5

qemu. Official QEMU mirror. Please see http://wiki.qemu.org/Contribute/SubmitAPatch for how to submit changes to QEMU. Pull Requests are ignored. Please only use release tarballs from the QEMU website.

5

fishhook. A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS. (arm64e pac support)

5

evilHEAP. heap exploit example

4

configs. 自用的各类config集合, 方便使用.

4

VirtualXposed. A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.

4

ktrw. An iOS kernel debugger based on a KTRR bypass for A11 iPhones that works with LLDB.

4

ios-resources. Useful resources for iOS hacking

4

Blackbone. Windows memory hacking library

3

pypcode. Python bindings to Ghidra's SLEIGH library for disassembly and IR translation

3

ios_bfu_triage. Bash script to extract data from a "chekcra1ned" iOS device

3

localproxy. 自动切换代理

3

CVE-2019-6207. xnu kernel heap inofo leak

2

LIEF. LIEF - Library to Instrument Executable Formats

2

shadowsocks. Python

2

xboot. The extensible bootloader for embedded system with application engine, write once, run everywhere.

2

crypto-algorithms. Basic implementations of standard cryptography algorithms, like AES and SHA-1.

2

MonkeyDev. CaptainHook Tweak、Logos Tweak and Command-line Tool、Patch iOS Apps, Without Jailbreak.

2

http-client. A high-performance, high-stability, cross-platform HTTP client.

2

pocs. Proof of Concepts (PE, PDF...)

2

Zelda. A simple multi-process HTTP/HTTPS tunnel proxy, supports Basic authentication.

2

QBDI. A Dynamic Binary Instrumentation framework based on LLVM.

2

Saily. Modern. Fast. Beautiful.

1

syzkaller. syzkaller is an unsupervised coverage-guided kernel fuzzer

1

ArxContainer. C++ container-like classes (vector, map, etc.) for Arduino which cannot use STL

1

MiniSTL. Tiny STL based on SGI STL

1

tunelo. tunelo encrypts and tunnels UDP traffic (e.g. WireGuard) over a transport protocol like websocket or TCP. Helping to use VPNs in restricted areas.

1

lldb-capstone-arm. Capstone disassemble scripts for lldb

1

Pocsuite. Pocsuite 是知道创宇安全研究团队打造的一款基于漏洞与 PoC 的远程漏洞验证框架,Pocsuite is A remote vulnerability test framework developed by Knownsec Security Team.

1

goron. Yet another llvm based obfuscator

1

iBoot64helper. IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering

1

frida-gum. Low-level code instrumentation library used by frida-core

1