Static binary instrumentation for windows kernel drivers, to use with winafl

CTF平台 支持docker 动态部署题目、分数统计、作弊检测，静态题目，漏洞复现,ctf platform,

Loki - Simple IOC and YARA Scanner

Coverage-guided Fuzzing as Online Stochastic Control

SWE-agent takes a GitHub issue and tries to automatically fix it, using GPT-4, or your LM of choice. It can also be employed for offensive cybersecurity or competitive coding challenges. [NeurIPS 2…

A patched QEMU that exposes an interface for LibAFL-based fuzzers

Only included Word, Excel, PowerPoint.

Morion is a PoC tool to experiment with symbolic execution on real-word (ARMv7) binaries.

XBOW Validation Benchmarks

A TCP/UDP based network daemon fuzzer

A prototype of Shared-keywords aware Taint Checking, a novel static analysis approach that tracks the data flow of the user input between front-end and back-end to precisely detect security vulnera…

SymQEMU: Compilation-based symbolic execution for binaries

Shellphish's automated exploitation engine, originally created for the Cyber Grand Challenge.

Black box fuzzer for web applications

S2E: A platform for multi-path program analysis with selective symbolic execution.

A low-overhead dynamic binary instrumentation and modification tool for ARM (both AArch32 and AArch64 support) and RISC-V (RV64GC).

Module for automatically generating exploits 💎

Fuzzing IoT Devices Using the Router TL-WR902AC as Example

The results of my small term paper on the topic of the Internet of Vulnerable Things and the exploit for CVE-2022-48194.

IDA plugin which queries uses language models to speed up reverse-engineering

This repository contains scripts and dataset for a Apt Identification Triage System

I am still working on it

Automatic exploit generation for simple linux pwn challenges.