Starred repositories
A WIP cheat sheet for various linux kernel heap exploitation techniques (and privilige escalations).
XNU kernel, Kernel Collection and CodeQL build scripts
QCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.
This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
Download Samsung firmware from official servers
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
FirmWire / ghidra
Forked from NationalSecurityAgency/ghidraGhidra is a software reverse engineering (SRE) framework
Helpful scripts for various tasks performed during reverse engineering the Shannon Baseband with the goal to exploit the Samsung Galaxy S6
A curated list of awesome baseband research resources
FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares
Scripts, plugins, and information for working with Samsung's Shannon baseband.
A code skeleton of Samsung's Shannon S5000 baseband modem.
Modification of LTE Firmwares on smartphones
Hexagon processor module for IDA Pro disassembler
VMF is a modular fuzzer that is easily reconfigurable to use many different capabilities and approaches. Also includes a web-based distributed fuzzing infrastructure.
A test tool that simulates the s1aptest functionality of a LTE network
Open source SDR 4G software suite from Software Radio Systems (SRS) https://docs.srsran.com/projects/4g
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
A curated list of awesome directed fuzzing research papers
UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities