ll's Projects
Code Property Graph: specification, query language, and utilities
CVE-2021-4154 exploit
A root exploit for CVE-2022-0847 (Dirty Pipe)
这个漏洞感觉只能信息泄露?
Local privilege escalation PoC for Linux kernel CVE-2022-1015
exploit for CVE-2022-2588
CVE-2023-0386 analysis and Exp
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
Dirty COW
Kernel exploitation technique
ebpfkit is a rootkit powered by eBPF
a dataflow analysis framework implemented in Go, like soot
Hydra: an Extensible Fuzzing Framework for Finding Semantic Bugs in File Systems
Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.
Leaky Vessels Dynamic Detector
The reference implementation of the Linux FUSE (Filesystem in Userspace) interface
Config files for my GitHub profile.
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
syzkaller is an unsupervised coverage-guided kernel fuzzer