ExploitsA personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
Stars: ✭ 75 (+435.71%)
batchqlGraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
Stars: ✭ 251 (+1692.86%)
harosH(igh) A(ssurance) ROS - Static analysis of ROS application code.
Stars: ✭ 168 (+1100%)
go-gtfogtfo, now with the speed of golang
Stars: ✭ 59 (+321.43%)
Static-Malware-AnalysesA open source Python script to perform static analysis on a Malware Binary File (portable executable).
Stars: ✭ 15 (+7.14%)
go-mndMagic number detector for Go.
Stars: ✭ 153 (+992.86%)
Cpp2ILWork-in-progress tool to reverse unity's IL2CPP toolchain.
Stars: ✭ 689 (+4821.43%)
deps-inferInfer mvn deps from sources
Stars: ✭ 36 (+157.14%)
rstaticAn R package for static analysis of R code.
Stars: ✭ 32 (+128.57%)
PwnX.py🏴☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit
Stars: ✭ 30 (+114.29%)
constybleCSS complexity linter
Stars: ✭ 92 (+557.14%)
hackKubernetes security and vulnerability tools and utilities.
Stars: ✭ 56 (+300%)
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (+285.71%)
Ultimate-Guitar-HackThe first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar
Stars: ✭ 61 (+335.71%)
PaperMacheteA project that uses Binary Ninja and GRAKN.AI to perform static analysis on binary files with the goal of identifying bugs in software.
Stars: ✭ 49 (+250%)
SubRosaBasic tool to automate backdooring PE files
Stars: ✭ 48 (+242.86%)
angr-cliRepo for various angr ipython features to give it more of a cli feeling
Stars: ✭ 41 (+192.86%)
cfsecStatic analysis for CloudFormation templates to identify common misconfiguration
Stars: ✭ 53 (+278.57%)
jitanaA graph-based static-dynamic hybrid DEX code analysis tool
Stars: ✭ 35 (+150%)
AxonUnrestricted Lua Execution
Stars: ✭ 59 (+321.43%)
mllint`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.
Stars: ✭ 67 (+378.57%)
vscode-checkstyleHaxe Checkstyle extension for Visual Studio Code
Stars: ✭ 24 (+71.43%)
r2frida-bookThe radare2 + frida book for Mobile Application assessment
Stars: ✭ 38 (+171.43%)
klaraAutomatic test case generation for python and static analysis library
Stars: ✭ 250 (+1685.71%)
firmeyeIoT固件漏洞挖掘工具
Stars: ✭ 133 (+850%)
DoubleStarA personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques
Stars: ✭ 140 (+900%)
goreporterA Golang tool that does static analysis, unit testing, code review and generate code quality report.
Stars: ✭ 3,019 (+21464.29%)
dynlibIDA Pro plugin to aid PS4 user mode ELF reverse engineering.
Stars: ✭ 51 (+264.29%)
IDAShellShell extension for opening executables in IDA
Stars: ✭ 172 (+1128.57%)
PythonPython Powered Repository
Stars: ✭ 17 (+21.43%)
save-cloudCluster-based cloud mechanism for running SAVE framework
Stars: ✭ 30 (+114.29%)
nakedretnakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.
Stars: ✭ 82 (+485.71%)
vim-phpstanA Vim plugin for PHPStan - https://github.com/phpstan/phpstan. It calls `phpstan` to do static analysis of your PHP code and displays the errors in Vim's quickfix list.
Stars: ✭ 26 (+85.71%)
ida-xtensa2IDAPython plugin for Tensilica Xtensa (as seen in ESP8266), version 2
Stars: ✭ 29 (+107.14%)
home-assistant-flairCustom component for Home Assistant Core for Flair pucks, vents, rooms, structures, and minisplits
Stars: ✭ 51 (+264.29%)
identypoidentypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).
Stars: ✭ 26 (+85.71%)
nestifDetect deeply nested if statements in Go source code
Stars: ✭ 30 (+114.29%)
shell-linterA Github Action for ShellCheck
Stars: ✭ 58 (+314.29%)
PatrowlHearsDataOpen-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds
Stars: ✭ 66 (+371.43%)
phan-taint-check-pluginGithub mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)
Stars: ✭ 21 (+50%)
kernelpwnkernel-pwn and writeup collection
Stars: ✭ 348 (+2385.71%)
gotchaGo Taint CHeck Analyser
Stars: ✭ 40 (+185.71%)
vulristicsExtensible framework for analyzing publicly available information about vulnerabilities
Stars: ✭ 46 (+228.57%)
ScalpelScalpel: The Python Static Analysis Framework
Stars: ✭ 176 (+1157.14%)
saveUniversal test framework for cli tools [mainly for code analyzers and compilers]
Stars: ✭ 33 (+135.71%)
Sundials.jlJulia interface to Sundials, including a nonlinear solver (KINSOL), ODE's (CVODE and ARKODE), and DAE's (IDA) in a SciML scientific machine learning enabled manner
Stars: ✭ 167 (+1092.86%)
exploitCollection of different exploits
Stars: ✭ 153 (+992.86%)
exploit-CVE-2015-3306ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container
Stars: ✭ 97 (+592.86%)
anonymisationAnonymization of legal cases (Fr) based on Flair embeddings
Stars: ✭ 85 (+507.14%)
padreBlazing fast, advanced Padding Oracle exploit
Stars: ✭ 35 (+150%)
spellbookFramework for rapid development and reusable of security tools
Stars: ✭ 67 (+378.57%)
analysis-modelA library to read static analysis reports into a Java object model
Stars: ✭ 74 (+428.57%)
CVE-2019-10149CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
Stars: ✭ 15 (+7.14%)