Stars
Tools for tracing OpenGL, Direct3D, and other graphics APIs
CLI that detects fake-star campaigns, dependency hijacks, licence red-flags and other signs of repository risk. Inspired by the “4.5 million fake stars” study, StarGuard helps CTOs, security teams …
Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.
Cheat Engine's lua encodeFunction decoder
Investigate malicious Windows logon by visualizing and analyzing Windows event log
Example Frida agent written in TypeScript
Utilities to help injecting libraries and frida in apks.
KDMapper is a simple tool that exploits iqvw64e.sys Intel driver to manually map non-signed drivers in memory
Darwin/macOS emulation layer for Linux
A resource containing all the tools each ransomware gangs uses
rp++ is a fast C++ ROP gadget finder for PE/ELF/Mach-O x86/x64/ARM/ARM64 binaries.
Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
A blazing fast™ multithreaded ROP Gadget finder. ropper / ropgadget alternative (currently x86 only)
Here we discuss how one can investigate crypto hacks and security incidents, and collect all the possible tools and manuals! PRs are welcome! If any tool is missing - please open PR!
Recover 64 bit ELF executables from memory dump
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper us…
Bear is a tool that generates a compilation database for clang tooling.
A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.
Run macOS on QEMU/KVM. With OpenCore + Monterey + Ventura + Sonoma support now! Only commercial (paid) support is available now to avoid spammy issues. No Mac system is required.
The Linux Kernel Module Programming Guide (updated for 5.0+ kernels)
Python Command-Line Ghidra Binary Diffing Engine
Hackish way to intercept and modify non-HTTP protocols through Burp & others.
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
Automagically reverse-engineer REST APIs via capturing traffic
Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools