Lists (17)
Sort Name ascending (A-Z)
🧮 Binary Analysis
🏟️ Chrome Internals
Collection about Google Chrome Internals🦅 Chrome SBX
List about Chrome Sandbox Escape🧷 CTF
👓 Dynamic Analysis
👍 Fuzzing
Everything about publicly available fuzzing tools👨🚀 iOS
🌍 RE Tools
Useful tools for Reverse Engineer or Vulnerability Research🧧 Red Team
Collection of tools and techniques🔍 Static Analysis
🌟 System Design
🈂️ UNIX Tools
🔐 Virtualization
Hypervisor🔢 Web App
List of Bug Bounty Web App🔕 Web3
🥇 Windows Debug
Tools or techniques for debugging Windows environment💯 Windows Exploit POC
POC for exploit in Windows both userspace and kernelspaceStars
To learn common smart contract vulnerabilities using Foundry!
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
The cheat sheet about Java Deserialization vulnerabilities
Hyperlight is a lightweight Virtual Machine Manager (VMM) designed to be embedded within applications. It enables safe execution of untrusted code within micro virtual machines with very low latenc…
A Frida script that disables Flutter's TLS verification
Rusty Hypervisor - Windows UEFI Blue Pill Type-1 Hypervisor in Rust (Codename: Illusion)
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)
IDA Pro plugin for query based searching within the binary useful mainly for vulnerability research.
Application Fuzzing: Tools, Techniques, and Best Practices
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
⏱️ Notes and resources related to v8 and thus Node.js performance
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
Include CVE vulnerability analyze, ctf pwn and documents for Browser-pwn
An updated collection of resources targeting browser-exploitation.
Collection of browser challenges
An attempt to answer the age old interview question "What happens when you type google.com into your browser and press enter?"
VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
The recursive internet scanner for hackers. 🧡