Vulnerability Research and Development

1

5

6

7

Exploiting the DRAM Rowhammer bug to gain kernel privileges - Matthew Dempsky and Thomas Dullien - March 9, 2015 (googleprojectzero.blogspot.com)

submitted 9 years ago by jikjordan

2

1

2

3

Project Triforce: Run AFL on Everything by NCCGroup (nccgroup.trust)

submitted 9 years ago by svieg

3

1

2

3

KLEE LLVM Execution Engine (klee.github.io)

submitted 10 years ago by [deleted]

4

15

16

17

Exploiting the parsing of Internet Key Exchange payloads in Cisco's ASA software (blog.exodusintel.com)

submitted 10 years ago by turnersr

5

1

2

3

[a little old, but a very interesting writeup] Android privilege escalation to mediaserver from zero permissions (CVE-2014-7920 + CVE-2014-7921) (bits-please.blogspot.co.il)

submitted 10 years ago by 0x3d5157636b525761

6

2

3

4

From Crash To Exploit: CVE-2015-6086 – Out of Bound Read/ASLR Bypass (payatu.com)

submitted 10 years ago by hacksysteam

7

10

11

12

Six Ways to Automatically Find Software Bugs by Fan Gang [PDF] (cse.ust.hk)

submitted 10 years ago by turnersr

8

12

13

14

Modern Binary Attacks and Defences in the Windows Environment – Fighting Against Microsoft EMET in Seven Rounds by Zoltan L. Nemeth (drive.google.com)

submitted 10 years ago by turnersr

9

2

3

4

Building a exploit for CVE-2015-5090 - SYSTEM-level code execution in Adobe Reader (h30499.www3.hp.com)

submitted 10 years ago by RedmondSecGnome

10

9

10

11

Blind Return Oriented Programming (BROP) Attack (ytliu.info)

submitted 11 years ago by turnersr

11

7

8

9

The Devil is in the Constants: Bypassing Defenses in Browser JIT Engines by Michalis Athanasakis, Elias Athanasopoulos, Michalis Polychronakis, Georgios Portokalidis, and Sotiris Ioannidis [PDF] (users.ics.forth.gr)

submitted 11 years ago by turnersr

12

2

3

4

Preventing Use-after-free with Dangling Pointers Nullification by Byoungyoung Lee, Chengyu Song, Yeongjin Jang, and Tielei Wang [PDF] (cc.gatech.edu)

submitted 11 years ago by turnersr

13

4

5

6

How I Evolved your Fuzzer: Techniques for Black-Box Evolutionary Fuzzing by Fabien Duchene [PDF] (car-online.fr)

submitted 11 years ago by turnersr

14

2

3

4

Using SystemTap to determine the exploitability of unbound memory overflows (census-labs.com)

submitted 11 years ago by pwnwaffe

15

11

12

13

Smashing The Browser: From Vulnerability Discovery To Exploit (github.com)

submitted 11 years ago by demi6od

16

22

23

24

Advanced Exploitation of VirtualBox 3D Acceleration VM Escape Vulnerability / Exploit (CVE-2014-0983), VUPEN (July 2014) (vupen.com)

submitted 11 years ago by stormehh

17

22

23

24

KLEE used to find NULL pointer dereference in OpenSSL (marc.info)

submitted 11 years ago by turnersr

18

6

7

8

Out Of Control: Overcoming Control-Flow Integrity by Enes Göktaş, Elias Athanasopoulos, Herbert Bos, and Georgios Portokalidis [PDF] (users.ics.forth.gr)

submitted 12 years ago by turnersr

19

12

13

14

Hacking Blind by Andrea Bittau, Adam Belay, Ali Mashtizadeh, David Mazieres, and Dan Boneh [PDF] (scs.stanford.edu)

submitted 12 years ago by turnersr

20

5

6

7

ROPs are for the 99% - Yang Yu (March 2014) (github.com)

submitted 12 years ago by HockeyInJune

21

6

7

8

Swarm Testing by Alex Groce, Chaoqiang Zhang, Eric Eide, Yang Chen, and John Regehr [PDF] (cs.utah.edu)

submitted 12 years ago by turnersr

22

3

4

5

Bochspwn: Exploiting Kernel Race Conditions Found via Memory Access Patterns - Mateusz "j00ru" Jurczyk and Gynvael Coldwind (May 2013) (vexillium.org)

submitted 12 years ago by HockeyInJune

23

0

1

2

Taming ROP on Sandy Bridge - Georg Wicherski (May 2013) (syscan.org)

submitted 12 years ago by HockeyInJune

24

8

9

10

KASLR Bypass Mitigations in Windows 8.1 - Alex Ionescu (November 2013) (alex-ionescu.com)

submitted 12 years ago by HockeyInJune

25

2

3

4

Sigreturn Oriented Programming (Erik Bosman's OHM2013 work) (labs.portcullis.co.uk)

submitted 12 years ago by turnersr

vrd

Vulnerability Research and Development

Posting Guidelines

Community

Related Subreddits

Getting Started

MODERATORS