Krasis is a Hybrid LLM runtime which focuses on efficient running of larger models on consumer grade VRAM limited hardware

A kernel rootkit that works without kallsyms and kprobe support.

Android kernel exploit for CVE-2025-38352, previously exploited in-the-wild. Targets vulnerable x86_64 Linux kernels v5.10.x.

Modify Android linker to provide loading module and hook function

A library for loading ELF from memory and/or making Linux syscalls on Android written in pure Java.

A proof-of-concept for CVE-2025-21479, chained with a Dirty Pagetable technique.

Collection of codes focused on Linux rootkits

Stealthy Linux Kernel Rootkit for modern kernels (6x)

PoC for CVE-2024-38399

An MCP extension for Ghidra

ELF DSO injector

安卓内存读写驱动 linux kernel (Android) memory tool

Android/Linux Kernel dirver read and write memory.

C and Python training from our Vulnerability Researcher Development Program (VRDP)

Linux ARM64内核硬件进程内存读写驱动、硬件断点调试驱动。硬件级读写Linux进程内存、硬件级下断点。

Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit!

Linux kernel exploitation experiments

基于eBPF的堆栈追踪工具

Binja loader for H-Arx plugins

GEF - GDB Enhanced Features - bata24's fork

An ergonomic, featureful, and easy-to-integrate implementation of the GDB Remote Serial Protocol in Rust (with no-compromises #![no_std] support)

Dynamic injection tool for Linux/Android

SAEG: Stateful Automatic Exploit Generation, an AEG framework for CGC / RHG and pwnable CTF challenges.

Linux kernel privilege escalation techniques

Code injection from Linux kernel to a process

Kernel mode to user mode so injection