Description

Real World

• produce
  • CVE-2019-6788 (about slirp handle TCP/IP)
  • CVE-2020-14364 (USB core out of bounds read and write)
  • vitio-2.6.0 (null pointer reference)
  • vga-2.6.0 (out of bounds read and write)
  • pcnet-2.2.0 (out of bounds read and write)
• find
  • .......

Doc

• qemu-usb
  • EHCI (ehci specifiction)
  • xHCI (xhci specifiction)
  • UHCI (uhci specifiction)
  • usbfuzz (fuzz usb drivers by device emulation)
• 虚拟化安全之QEMU与KVM
  • QEMU (relate to this)
  • KVM
• qemu-slirp
  • Overview of TCP/IP
• linux-kernel-development
  • Linux设备驱动
  • Linux设备驱动开发详解
  • USB设备驱动
• misc
  • When-Virtualization-Encounters-AFL-A-Portable-Virtual-Device-Fuzzing-Framework-With-AFL

ctf

• done
  • 2017-Blizzard-strng
  • 2018-Defcon-Quals-EC3
  • 2019-qwb-quals-qwct
  • 2019-qwb-final-ExecChrome
  • 2021-RealWorld-quals-Easy_Escape
• original
  • 2020-GeekPwn-Quals-Vimu
  • 2020-GeekPwn-Quals-Kemu（2020-N1CTF-Kemu）
  • 2020-GeekPwn-Final-V1NKe's QEMU