Skip to content

Latest commit

 

History

History
3632 lines (2258 loc) · 256 KB

Readme_en.md

File metadata and controls

3632 lines (2258 loc) · 256 KB

Other Resource Collection Projects:

ReverseEngineering

  • Reverse Engineering Resource Collection. 3500+ open source tools, 2300+ blog posts.
  • This page only contains limited tools and posts. Read Full Version

PS

中文版本

Directory

TODO

  • Add more tools and posts

IDA


Tools

  • Mainly from Github

Recent Add

No Category

  • [1058Star][17d] [Py] fireeye/flare-ida Multiple IDA plugins and IDAPython scripts

    • StackStrings recovery of manually constructed strings described here
    • Struct Typer implements the struct typing described here
    • ApplyCalleeType specify or choose a function type for indirect calls as described here
    • argtracker identify static arguments to functions used within a program
    • idb2pat generate function patterns from an existing IDB database that can then be turned into FLIRT signatures to help identify similar functions in new files. more info
    • objc2_analyzer creates cross-references between selector references and their implementations as defined in the Objective-C runtime related sections of the target Mach-O executable
    • MSDN Annotations adds MSDN information from a XML file to the IDB database. more info
    • ironstrings uses code emulation to recover constructed strings (stackstrings) from malware
    • Shellcode Hashes create the database for hash search described in here
  • [737Star][7m] [Py] devttys0/ida Collection of IDA Python plugins/scripts/modules.

    • wpsearch Searches for immediate values commonly founds in MIPS WPS checksum implementations.
    • md5hash A sample implementation of MD5 in pure Python
    • alleycat Finds paths to a given code block inside a function; Finds paths between two or more functions; Generates interactive call graphs
    • codatify Defines ASCII-strings/functions/code that IDA's auto analysis missed; Converts all undefined bytes in the data segment into DWORDs
    • fluorescence Un/highlights function call instructions
    • leafblower Assists in identifying standard POSIX functions in MIPS/ARM code.
    • localxrefs Finds references to any selected text from within the current function
    • mipslocalvars Names stack variables used by the compiler for storing registers on the stack, simplifying stack data analysis (MIPS only)
    • mipsrop Allows you to search for suitable ROP gadgets in MIPS executable code; Built-in methods to search for common ROP gadgets
    • rizzo Identifies and re-names functions between two or more IDBs
  • [318Star][2m] [C] ohjeongwook/darungrim A patch analysis tool

  • [277Star][4m] [Py] jpcertcc/aa-tools Multiple RE plugins and scripts

Structure&&Class

No Category

C++ Class&&Virtual Table

  • [607Star][3m] [Py] 0xgalz/virtuailor IDAPython tool for C++ vtables reconstruction
    • Also In Section: IDA->Tools->Debug->Debugger Data |

      View Details

      静态部分:

      • 检测非直接调用
      • 利用条件断点, Hook非直接调用的值赋值过程

      动态 部分

      • 创建虚表结构
      • 重命名函数和虚表地址
      • 给反汇编非直接调用添加结构偏移
      • 给非直接调用到虚表之间添加交叉引用

      使用

      • File -> Script File -> Main.py(设置断点) -> IDA调试器执行

Collection

Skin&&Theme

  • [723Star][7m] [Py] zyantific/idaskins Plugin providing advanced skinning support for IDA Pro utilizing Qt stylesheets, similar to CSS.

Firmware&&Embed Device

  • [5228Star][2m] [Py] refirmlabs/binwalk a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images.
  • [492Star][5m] [Py] maddiestone/idapythonembeddedtoolkit a set of script to automate many of the steps associated with statically analyzing, or reverse engineering, the firmware of embedded devices in IDA Pro.

Signature(FLIRT...)&&Diff&&Match

No Category

FLIRT

FLIRT Signature Collection
FLIRT Signature Generate

Diff&&Match

Yara

IDB

Collaborative RE

  • [508Star][11m] [Py] idarlingteam/idarling a collaborative reverse engineering plugin for IDA Pro and Hex-Rays
  • [258Star][1y] [C++] dga-mi-ssi/yaco a Hex-Rays IDA plugin enabling collaborative reverse-engineering on IDA databases for multiple users

Sync With Debugger

Import Export&&Sync With Other Tools

No Category

Ghidra

BinNavi

BinaryNinja

Radare2

Frida

IntelPin

Specific Target

No Category

Loader&Processor

  • [205Star][1y] [Py] fireeye/idawasm IDA Pro loader and processor modules for WebAssembly

GoLang

Windows Driver

  • [306Star][1y] [Py] fsecurelabs/win_driver_plugin A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  • [218Star][1y] [Py] nccgroup/driverbuddy IDA Python script to assist with the reverse engineering of Windows kernel drivers.

PS3&&PS4

PDB

Flash&&SWF

Malware Family

CTF

IDAPython

No Category

  • [720Star][15d] [Py] idapython/src IDAPython project for Hex-Ray's IDA Pro
  • [373Star][3m] [Py] tmr232/sark IDAPython Made Easy

Cheatsheets

Instruction Reference&&Doc

Script Writting

No Category

  • [282Star][2m] [Py] fireeye/flare-emu marries a supported binary analysis framework, such as IDA Pro or Radare2, with Unicorn’s emulation framework to provide the user with an easy to use and flexible interface for scripting emulation tasks

Qt

Console&&GUI

  • [269Star][1m] [Py] eset/ipyida IPython console integration for IDA Pro

Template

Other Lang

Ancient

Debug&&Dynamic Data

No Category

DBI Data

Debugger Data

  • [607Star][3m] [Py] 0xgalz/virtuailor IDAPython tool for C++ vtables reconstruction

    • Also In Section: IDA->Tools->Structure->C++ Class |

      View Details

      静态部分:

      • 检测非直接调用
      • 利用条件断点, Hook非直接调用的值赋值过程

      动态 部分

      • 创建虚表结构
      • 重命名函数和虚表地址
      • 给反汇编非直接调用添加结构偏移
      • 给非直接调用到虚表之间添加交叉引用

      使用

      • File -> Script File -> Main.py(设置断点) -> IDA调试器执行
  • [386Star][5m] [Py] ynvb/die an IDA python plugin designed to enrich IDA`s static analysis with dynamic data

Decompiler&&AST

DeObfuscate

Nav&&Quick Access&&Graph&&Image

No Category

GUI Enhencement

Graph

  • [2569Star][6m] [Java] google/binnavi a binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.

Search

Android

Apple&&macOS&&iXxx&&Objective-C&&SWift&&Mach-O

No Category

Kernel Cache

Mach-O

Swift

ELF

Microcode

Emulator

Part Of Other Tool

Vul

No Category

  • [492Star][7m] [Py] danigargu/heap-viewer An IDA Pro plugin to examine the glibc heap, focused on exploit development
  • [372Star][3m] [Py] l4ys/lazyida Make your IDA Lazy!

ROP

Patch

Other

Function

No Category

Rename&&Prefix&&Tag

  • [291Star][3m] [Py] a1ext/auto_re IDA PRO auto-renaming plugin with tagging support

Nav&&Search

demangle

Taint Analysis&&Symbolic Execution

string

encrypt&&decrypt


Video&&Post

Recent Add

No Category

Tips&&Tricks

Series-Labeless Introduction

Series-Reversing With IDA From Scrach

Series-Using IDAPython To Make Your Life Easier

Original

ZH

Series-Reversing C Code With IDA

Tool&&Plugin&&Script

No Category

Loader&&Processor

With Other Tools

Translate-The IDA Pro Book

Translate-Reverse Engineering Code With IDA Pro

IDASelf

REPractice

No Category

Malware

Vuln Analysis&&Vuln Hunting

Microcode

AgainstIDA

Ghidra


Plugins&&Scripts

Ghidra

Recent Add

  • [455Star][9m] [YARA] ghidraninja/ghidra_scripts Scripts for the Ghidra software reverse engineering suite.
    • binwalk Runs binwalk on the current program and bookmarks the findings
    • yara Automatically find crypto constants in the loaded program - allows to very quickly identify crypto code.
    • swift_demangler Automatically demangle swift function names
    • golang_renamer Restores function names from a stripped Go binary
  • [204Star][8m] [Java] rolfrolles/ghidrapal Ghidra Program Analysis Library(No Doc)

Specific Target

No Category

Loader&&Processor

Xbox

With Other Tools

No Category

Radare2

IDA

DBI

Debugger

Skin&&Theme

Script Writting

Other

Lang


Post&&Videos

RecentAdd1

Recent Add

Vuln

Vuln Analysis

No Category

Vuln Analysis&&Vuln Hunting

Malware

Other

Tips&&Tricks

Script Writting

x64dbg


Plugins&&Scripts

x64dbg

  • [34576Star][1m] [C++] x64dbg/x64dbg An open-source x64/x32 debugger for windows.

Recent Add


Post&&Videos

OllyDbg


Plugins&&Scripts

Recent Add


Post&&Videos

WinDBG


Plugins&&Scripts

Recent Add


Post&&Videos

Android


Tools

Recent Add

  • [6101Star][3m] [Java] google/android-classyshark Analyze any Android/Java based app or game
  • [6094Star][5m] [Java] qihoo360/replugin RePlugin - A flexible, stable, easy-to-use Android Plug-in Framework
  • [5195Star][19d] [Py] mobsf/mobile-security-framework-mobsf Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
  • [5084Star][15d] [HTML] owasp/owasp-mstg The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
  • [4882Star][24d] [Java] guardianproject/haven Haven is for people who need a way to protect their personal spaces and possessions without compromising their own privacy, through an Android app and on-device sensors
  • [4776Star][12d] [C++] facebook/redex A bytecode optimizer for Android apps
  • [4306Star][15d] [Shell] ashishb/android-security-awesome A collection of android security related resources
  • [3649Star][2m] [C++] anbox/anbox a container-based approach to boot a full Android system on a regular GNU/Linux system
  • [2314Star][1y] [Java] csploit/android cSploit - The most complete and advanced IT security professional toolkit on Android.
  • [2120Star][9m] [Py] linkedin/qark Tool to look for several security related Android application vulnerabilities
  • [2095Star][10m] jermic/android-crack-tool
  • [2051Star][21d] [Py] sensepost/objection runtimemobile exploration
  • [2011Star][8m] [Py] fsecurelabs/drozer The Leading Security Assessment Framework for Android.
  • [1976Star][9d] [Java] kyson/androidgodeye AndroidGodEye:A performance monitor tool , like "Android Studio profiler" for Android , you can easily monitor the performance of your app real time in pc browser
  • [1925Star][7m] [Java] fuzion24/justtrustme An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
  • [1430Star][11m] [Java] aslody/legend A framework for hook java methods.
  • [1417Star][1m] [Java] chrisk44/hijacker Aircrack, Airodump, Aireplay, MDK3 and Reaver GUI Application for Android
  • [1241Star][3m] [Java] whataa/pandora an android library for debugging what we care about directly in app.
  • [1235Star][2m] [Java] find-sec-bugs/find-sec-bugs The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
  • [1213Star][2m] [JS] megatronking/httpcanary A powerful capture and injection tool for the Android platform
  • [1208Star][4m] [Java] javiersantos/piracychecker An Android library that prevents your app from being pirated / cracked using Google Play Licensing (LVL), APK signature protection and more. API 14+ required.
  • [1134Star][1m] [Java] huangyz0918/androidwm An android image watermark library that supports invisible digital watermarks (steganography).
  • [885Star][2m] [C] 504ensicslabs/lime LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures f…
  • [820Star][11d] proxymanapp/proxyman Modern and Delightful HTTP Debugging Proxy for macOS, iOS and Android
  • [810Star][4m] [Scala] antox/antox Android client for Project Tox - Secure Peer to Peer Messaging
  • [800Star][3m] sh4hin/androl4b A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
  • [769Star][1y] [C] ele7enxxh/android-inline-hook thumb16 thumb32 arm32 inlineHook in Android
  • [668Star][2m] doridori/android-security-reference A W.I.P Android Security Ref
  • [608Star][7m] [JS] vincentcox/stacoan StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
  • [559Star][14d] [Shell] owasp/owasp-masvs The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.
  • [546Star][2m] nordicsemiconductor/android-nrf-connect Documentation and issue tracker for nRF Connect for Android.
  • [541Star][1y] [Java] jaredrummler/apkparser APK parser for Android
  • [527Star][4m] [JS] wooyundota/droidsslunpinning Android certificate pinning disable tools
  • [518Star][4m] [Java] megatronking/stringfog 一款自动对字节码中的字符串进行加密Android插件工具
  • [511Star][9d] [Java] happylishang/cacheemulatorchecker Android模拟器检测,检测Android模拟器 ,获取相对真实的IMEI AndroidId 序列号 MAC地址等,作为DeviceID,应对防刷需求等
  • [482Star][2m] [JS] lyxhh/lxhtoolhttpdecrypt Simple Android/iOS protocol analysis and utilization tool
  • [450Star][12m] [Kotlin] shadowsocks/kcptun-android kcptun for Android.
  • [443Star][1m] [TS] shroudedcode/apk-mitm
  • [431Star][13d] [C] guardianproject/orbot The Github home of Orbot: Tor on Android (Also available on gitlab!)
  • [426Star][19d] [Py] thehackingsage/hacktronian All in One Hacking Tool for Linux & Android
  • [412Star][4m] [Java] megatronking/netbare Net packets capture & injection library designed for Android
  • [409Star][3m] [CSS] angea/pocorgtfo a "Proof of Concept or GTFO" mirror with extra article index, direct links and clean PDFs.
  • [408Star][1y] [Java] testwhat/smaliex A wrapper to get de-optimized dex from odex/oat/vdex.
  • [379Star][6m] [Makefile] crifan/android_app_security_crack 安卓应用的安全和破解
  • [379Star][1y] [CSS] nowsecure/secure-mobile-development A Collection of Secure Mobile Development Best Practices
  • [358Star][5m] b3nac/android-reports-and-resources A big list of Android Hackerone disclosed reports and other resources.
  • [358Star][5m] [C] the-cracker-technology/andrax-mobile-pentest ANDRAX The first and unique Penetration Testing platform for Android smartphones
  • [333Star][25d] [Java] datatheorem/trustkit-android Easy SSL pinning validation and reporting for Android.
  • [284Star][9m] [Py] micropyramid/forex-python Foreign exchange rates, Bitcoin price index and currency conversion using ratesapi.io
  • [267Star][4m] [Py] amimo/dcc DCC (Dex-to-C Compiler) is method-based aot compiler that can translate DEX code to C code.
  • [265Star][11d] [Py] den4uk/andriller a collection of forensic tools for smartphones
  • [251Star][10m] [C] chef-koch/android-vulnerabilities-overview An small overview of known Android vulnerabilities
  • [234Star][3m] [C] grant-h/qu1ckr00t A PoC application demonstrating the power of an Android kernel arbitrary R/W.
  • [234Star][1y] [Ruby] hahwul/droid-hunter (deprecated) Android application vulnerability analysis and Android pentest tool
  • [229Star][8m] [Java] jieyushi/luffy Android字节码插件,编译期间动态修改代码,改造添加全埋点日志采集功能模块,对常见控件进行监听处理
  • [225Star][3m] [Java] virb3/trustmealready Disable SSL verification and pinning on Android, system-wide
  • [208Star][26d] [C] derrekr/fastboot3ds A homebrew bootloader for the Nintendo 3DS that is similar to android's fastboot.

Recent Add1

HotFix

  • [14557Star][13d] [Java] tencent/tinker Tinker is a hot-fix solution library for Android, it supports dex, library and resources update without reinstall apk.
  • [3462Star][27d] [Java] meituan-dianping/robust Robust is an Android HotFix solution with high compatibility and high stability. Robust can fix bugs immediately without a reboot.
  • [1117Star][6m] [Java] manbanggroup/phantom 唯一零 Hook 稳定占坑类 Android 热更新插件化方案

Package

  • [5080Star][2m] [Java] meituan-dianping/walle Android Signature V2 Scheme签名下的新一代渠道包打包神器

Collection

App

Xposed

  • [8756Star][2m] [Java] android-hacker/virtualxposed A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.
  • [2559Star][7m] taichi-framework/taichi A framework to use Xposed module with or without Root/Unlock bootloader, supportting Android 5.0 ~ 10.0
  • [2034Star][12d] [Java] elderdrivers/edxposed Elder driver Xposed Framework.
  • [1726Star][1y] [Java] ac-pm/inspeckage Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)
  • [1655Star][2m] [Java] tiann/epic Dynamic java method AOP hook for Android(continution of Dexposed on ART), Supporting 4.0~10.0
  • [1296Star][2m] [Java] android-hacker/exposed A library to use Xposed without root or recovery(or modify system image etc..).
  • [790Star][8m] [Java] blankeer/mdwechat 一个能让微信 Material Design 化的 Xposed 模块
  • [669Star][12d] [Java] ganyao114/sandhook Android ART Hook/Native Inline Hook/Single Instruction Hook - support 4.4 - 10.0 32/64 bit - Xposed API Compat
  • [478Star][2m] [Java] tornaco/x-apm 应用管理 Xposed
  • [322Star][1y] [C] smartdone/dexdump 快速脱一代壳的xposed插件
  • [309Star][1m] bigsinger/androididchanger Xposed Module for Changing Android Device Info
  • [309Star][13d] [Java] ganyao114/sandvxposed Xposed environment without root (OS 5.0 - 10.0)
  • [204Star][1y] [C] gtoad/android_inline_hook Build an so file to automatically do the android_native_hook work. Supports thumb-2/arm32 and ARM64 ! With this, tools like Xposed can do android native hook.

Pack&&Unpack

  • [1793Star][8m] [C++] wrbug/dumpdex Android unpack
  • [1465Star][3m] [C++] vaibhavpandeyvpz/apkstudio Open-source, cross platform Qt based IDE for reverse-engineering Android application packages.
  • [811Star][4m] [C] strazzere/android-unpacker Android Unpacker presented at Defcon 22: Android Hacker Protection Level 0
  • [712Star][2m] [YARA] rednaga/apkid Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
  • [366Star][3m] [Java] patrickfav/uber-apk-signer A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.
  • [322Star][6m] [Shell] 1n3/reverseapk Quickly analyze and reverse engineer Android packages

HOOK

  • [1500Star][27d] [C] iqiyi/xhook a PLT (Procedure Linkage Table) hook library for Android native ELF
  • [1494Star][9d] [C++] jmpews/dobby a lightweight, multi-platform, multi-architecture hook framework.
  • [804Star][25d] [C++] aslody/whale Hook Framework for Android/IOS/Linux/MacOS
  • [530Star][7m] [Java] aslody/andhook Android dynamic instrumentation framework
  • [361Star][8m] [C] turing-technician/fasthook Android ART Hook

Emulator

  • [1492Star][1y] [C++] f1xpl/openauto AndroidAuto headunit emulator
  • [532Star][7m] [Java] limboemu/limbo Limbo is a QEMU-based emulator for Android. It currently supports PC & ARM emulation for Intel x86 and ARM architecture. See our wiki
  • [471Star][3m] [Java] strazzere/anti-emulator Android Anti-Emulator

IDA

Debug

Malware

Obfuscate

Reverse Engineering


Posts&&Videos

Apple&&iOS&&iXxx


Mach-O

Tools

  • [2540Star][10m] [ObjC] nygard/class-dump Generate Objective-C headers from Mach-O files.
  • [2140Star][2m] [Py] jonathansalwan/ropgadget This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectures.
  • [399Star][2m] [Logos] limneos/classdump-dyld Class-dump any Mach-o file without extracting it from dyld_shared_cache
  • [265Star][8m] [ObjC] devaukz/macho-kit A C/Objective-C library for parsing Mach-O files.

Post


JailBreak

Tools

Post


LLDB

Tools

  • [8031Star][3m] [Py] facebook/chisel Chisel is a collection of LLDB commands to assist debugging iOS apps.
  • [784Star][3m] [C++] nodejs/llnode An lldb plugin for Node.js and V8, which enables inspection of JavaScript states for insights into Node.js processes and their core dumps.
  • [636Star][2m] [C++] apple/swift-lldb This is the version of LLDB that supports the Swift programming language & REPL.
  • [492Star][28d] [Rust] vadimcn/vscode-lldb A native debugger extension for VSCode based on LLDB
  • [388Star][2m] [C++] llvm-mirror/lldb Mirror of official lldb git repository located at

Post


XCode

Tools

  • [6203Star][3m] [ObjC] johnno1962/injectionforxcode Runtime Code Injection for Objective-C & Swift
  • [2057Star][19d] [ObjC] ios-control/ios-deploy Install and debug iPhone apps from the command line, without using Xcode
  • [1606Star][2m] [Swift] indragiek/inappviewdebugger A UIView debugger (like Reveal or Xcode) that can be embedded in an app for on-device view debugging
  • [1409Star][1m] [Swift] johnno1962/injectioniii Re-write of Injection for Xcode in (mostly) Swift4
  • [572Star][1m] [ObjC] hdb-li/lldebugtool LLDebugTool is a debugging tool for developers and testers that can help you analyze and manipulate data in non-xcode situations.
  • [384Star][3m] [JS] johnno1962/xprobeplugin Live Memory Browser for Apps & Xcode

Post


Tools

Recent Add

  • [10966Star][10d] [ObjC] flipboard/flex An in-app debugging and exploration tool for iOS
  • [5775Star][4m] [ObjC] square/ponydebugger Remote network and data debugging for your native iOS app using Chrome Developer Tools
  • [4663Star][1m] [C] google/ios-webkit-debug-proxy A DevTools proxy (Chrome Remote Debugging Protocol) for iOS devices (Safari Remote Web Inspector).
  • [4397Star][12d] [Swift] signalapp/signal-ios A private messenger for iOS.
  • [3686Star][4m] [C] facebook/fishhook A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS.
  • [3414Star][2m] icodesign/potatso Potatso is an iOS client that implements different proxies with the leverage of NetworkExtension framework in iOS 10+.
  • [3327Star][3m] [Swift] yagiz/bagel a little native network debugging tool for iOS
  • [3071Star][10m] [JS] jipegit/osxauditor OS X Auditor is a free Mac OS X computer forensics tool
  • [2867Star][12d] [ObjC] facebook/idb idb is a flexible command line interface for automating iOS simulators and devices
  • [2795Star][24d] [Swift] kasketis/netfox A lightweight, one line setup, iOS / OSX network debugging library!
  • [2753Star][1m] [Makefile] theos/theos A cross-platform suite of tools for building and deploying software for iOS and other platforms.
  • [2733Star][26d] [ObjC] dantheman827/ios-app-signer This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
  • [2708Star][2m] [ObjC] kjcracks/clutch Fast iOS executable dumper
  • [1801Star][1y] aozhimin/ios-monitor-platform
  • [1695Star][6m] [Py] yelp/osxcollector A forensic evidence collection & analysis toolkit for OS X
  • [1683Star][2m] [Swift] pmusolino/wormholy iOS network debugging, like a wizard 🧙‍♂️
  • [1642Star][7m] [Objective-C++] tencent/oomdetector OOMDetector is a memory monitoring component for iOS which provides you with OOM monitoring, memory allocation monitoring, memory leak detection and other functions.
  • [1630Star][1m] ivrodriguezca/re-ios-apps A completely free, open source and online course about Reverse Engineering iOS Applications.
  • [1442Star][28d] [ObjC] nabla-c0d3/ssl-kill-switch2 Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps
  • [1299Star][6m] [JS] feross/spoof Easily spoof your MAC address in macOS, Windows, & Linux!
  • [1291Star][1m] [JS] icymind/vrouter 一个基于 VirtualBox 和 openwrt 构建的项目, 旨在实现 macOS / Windows 平台的透明代理.
  • [1253Star][2m] [Vue] chaitin/passionfruit [WIP] Crappy iOS app analyzer
  • [1252Star][17d] michalmalik/osx-re-101 A collection of resources for OSX/iOS reverse engineering.
  • [1239Star][8d] [C] datatheorem/trustkit Easy SSL pinning validation and reporting for iOS, macOS, tvOS and watchOS.
  • [1215Star][16d] [YARA] horsicq/detect-it-easy Program for determining types of files for Windows, Linux and MacOS.
  • [1113Star][1y] [ObjC] neoneggplant/eggshell iOS/macOS/Linux Remote Administration Tool
  • [1001Star][2m] [ObjC] lmirosevic/gbdeviceinfo Detects the hardware, software and display of the current iOS or Mac OS X device at runtime.
  • [907Star][4m] [ObjC] ptoomey3/keychain-dumper A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken
  • [866Star][16d] [ObjC] meitu/mthawkeye Profiling / Debugging assist tools for iOS. (Memory Leak, OOM, ANR, Hard Stalling, Network, OpenGL, Time Profile ...)
  • [840Star][9d] [JS] cypress-io/cypress-example-recipes Various recipes for testing common scenarios with Cypress
  • [796Star][13d] [Shell] aqzt/kjyw 快捷运维,代号kjyw,项目基于shell、python,运维脚本工具库,收集各类运维常用工具脚本,实现快速安装nginx、mysql、php、redis、nagios、运维经常使用的脚本等等...
  • [662Star][1y] [Py] deepzec/bad-pdf create malicious PDF file to steal NTLM(NTLMv1/NTLMv2) Hashes from windows machines
  • [651Star][9m] [ObjC] chenxiancai/stcobfuscator iOS全局自动化 代码混淆 工具!支持cocoapod组件代码一并 混淆,完美避开hardcode方法、静态库方法和系统库方法!
  • [604Star][2m] siguza/ios-resources Useful resources for iOS hacking
  • [500Star][27d] [Swift] google/science-journal-ios Use the sensors in your mobile devices to perform science experiments. Science doesn’t just happen in the classroom or lab—tools like Science Journal let you see how the world works with just your phone.
  • [482Star][1y] [Swift] icepa/icepa iOS system-wide VPN based Tor client
  • [478Star][15d] pixelcyber/thor HTTP Sniffer/Capture on iOS for Network Debug & Inspect.
  • [471Star][8m] [C++] everettjf/machoexplorer [WIP] Explore MachO File on macOS and Windows
  • [462Star][15d] [Java] dsheirer/sdrtrunk A cross-platform java application for decoding, monitoring, recording and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). Website:
  • [430Star][11m] captainarash/the_holy_book_of_x86 A simple guide to x86 architecture, assembly, memory management, paging, segmentation, SMM, BIOS....
  • [396Star][4m] ansjdnakjdnajkd/ios Most usable tools for iOS penetration testing
  • [382Star][11m] [C] coolstar/electra1131 Electra for iOS 11.0 - 11.3.1
  • [375Star][29d] [Swift] justeat/justlog JustLog brings logging on iOS to the next level. It supports console, file and remote Logstash logging via TCP socket with no effort. Support for logz.io available.
  • [371Star][18d] [Shell] matthewpierson/1033-ota-downgrader First ever tool to downgrade ANY iPhone 5s, ANY iPad Air and (almost any) iPad Mini 2 to 10.3.3 with OTA blobs + checkm8!
  • [349Star][19d] [C] jedisct1/swift-sodium Safe and easy to use crypto for iOS and macOS
  • [346Star][4m] [TS] bacher09/pwgen-for-bios Password generator for BIOS
  • [340Star][3m] [C] trailofbits/cb-multios DARPA Challenges Sets for Linux, Windows, and macOS
  • [322Star][2m] [ObjC] auth0/simplekeychain A Keychain helper for iOS to make it very simple to store/obtain values from iOS Keychain
  • [310Star][28d] [Swift] securing/iossecuritysuite iOS platform security & anti-tampering Swift library
  • [263Star][14d] [ObjC] strongbox-password-safe/strongbox A KeePass/Password Safe Client for iOS and OS X
  • [247Star][1m] [C++] s0uthwest/futurerestore iOS upgrade and downgrade tool utilizing SHSH blobs
  • [244Star][7m] [JS] we11cheng/wcshadowrocket iOS Shadowrocket(砸壳重签,仅供参考,添加节点存在问题)。另一个fq项目potatso源码参见:
  • [239Star][1y] [ObjC] lmirosevic/gbping Highly accurate ICMP Ping controller for iOS
  • [238Star][4m] [Swift] shadowsocksr-live/ishadowsocksr ShadowsocksR for iOS, come from
  • [223Star][12m] [AppleScript] lifepillar/csvkeychain Import/export between Apple Keychain.app and plain CSV file.
  • [219Star][6m] [ObjC] rickyzhang82/tethering Proxy and DNS Server on iOS
  • [213Star][8m] [C] owasp/igoat OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar
  • [211Star][13d] [TS] bevry/getmac Get the mac address of the current machine you are on via Node.js
  • [203Star][5m] [Py] googleprojectzero/ios-messaging-tools several tools Project Zero uses to test iPhone messaging
  • [200Star][6m] [PS] mkellerman/invoke-commandas Invoke Command As System/Interactive/GMSA/User on Local/Remote machine & returns PSObjects.

Posts&&Videos

Recent Add

Cuckoo


Tools

Recent Add


Post&&Videos

DBI


DynamoRIO

Tools

DynamoRIO

Recent Add

  • [1364Star][3m] [C] googleprojectzero/winafl A fork of AFL for fuzzing Windows binaries
  • [249Star][5m] [C] ampotos/dynstruct Reverse engineering tool for automatic structure recovering and memory use analysis based on DynamoRIO and Capstone

With Other Tools

Posts&&Videos


IntelPin

Tools

Recent Add

  • [299Star][2m] [C] vusec/vuzzer depends heavily on a modeified version of DataTracker, which in turn depends on LibDFT pintool.

With Other Tools

No Category

Posts&&Videos


Frida

Tools

Frida

  • [4516Star][13d] [Makefile] frida/frida Clone this repo to build Frida

Recent Add

  • [1193Star][15d] [JS] alonemonkey/frida-ios-dump pull decrypted ipa from jailbreak device
  • [895Star][5m] [JS] dpnishant/appmon an automated framework for monitoring and tampering system API calls of native macOS, iOS and android apps. It is based on Frida.
  • [645Star][16d] [Py] igio90/dwarf Full featured multi arch/os debugger built on top of PyQt5 and frida
  • [559Star][1m] [JS] nccgroup/house A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.
  • [513Star][1m] [JS] iddoeldor/frida-snippets Hand-crafted Frida examples
  • [422Star][1y] [Py] dstmath/frida-unpack unpack script based on frida
  • [420Star][13d] [C] frida/frida-python Frida Python bindings
  • [332Star][15d] [JS] chichou/bagbak Yet another frida based iOS dumpdecrypted, works on iOS 13 with checkra1n and supports decrypting app extensions
  • [321Star][1m] [C] frida/frida-core Frida core library intended for static linking into bindings
  • [308Star][4m] [JS] smartdone/frida-scripts frida scripts
  • [283Star][8m] [Py] nightbringer21/fridump A universal memory dumper using Frida
  • [243Star][19d] [JS] frenchyeti/dexcalibur Dynamic binary instrumentation tool designed for Android application and powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
  • [228Star][13d] [C] frida/frida-gum Low-level code instrumentation library used by frida-core

With Other Tools

No Category
IDA
Binary Ninja
Radare2

Posts&&Videos


QBDI

Tools

  • [578Star][1y] [C++] qbdi/qbdi A Dynamic Binary Instrumentation framework based on LLVM.

Post


Other

Tools

Post

Other


Post-Recent Add


Tool-Recent Add

  • [19766Star][3m] [Jupyter Notebook] camdavidsonpilon/probabilistic-programming-and-bayesian-methods-for-hackers aka "Bayesian Methods for Hackers": An introduction to Bayesian methods + probabilistic programming with a computation/understanding-first, mathematics-second point of view. All in pure Python ;)
  • [14349Star][2m] [Py] corentinj/real-time-voice-cloning Clone a voice in 5 seconds to generate arbitrary speech in real-time
  • [11402Star][10d] [Java] oracle/graal Run Programs Faster Anywhere
  • [11213Star][2m] [Jupyter Notebook] selfteaching/the-craft-of-selfteaching One has no future if one couldn't teach themself.
  • [10378Star][11d] [Go] goharbor/harbor An open source trusted cloud native registry project that stores, signs, and scans content.
  • [7748Star][10d] [Go] git-lfs/git-lfs Git extension for versioning large files
  • [7020Star][14d] [Go] nats-io/nats-server High-Performance server for NATS, the cloud native messaging system.
  • [6894Star][2m] [Go] sqshq/sampler A tool for shell commands execution, visualization and alerting. Configured with a simple YAML file.
  • [6454Star][9m] [HTML] open-power-workgroup/hospital OpenPower工作组收集汇总的医院开放数据
  • [6353Star][2m] [Py] seatgeek/fuzzywuzzy Fuzzy String Matching in Python
  • [6055Star][7m] [JS] haotian-wang/google-access-helper 谷歌访问助手破解版
  • [5876Star][3m] [Gnuplot] nasa-jpl/open-source-rover A build-it-yourself, 6-wheel rover based on the rovers on Mars!
  • [5829Star][7m] [JS] sindresorhus/fkill-cli Fabulously kill processes. Cross-platform.
  • [5753Star][18d] [Go] casbin/casbin An authorization library that supports access control models like ACL, RBAC, ABAC in Golang
  • [5751Star][9m] [C] xoreaxeaxeax/movfuscator The single instruction C compiler
  • [5717Star][28d] [JS] swagger-api/swagger-editor Swagger Editor
  • [5420Star][12d] [Py] mlflow/mlflow Open source platform for the machine learning lifecycle
  • [5229Star][4m] [Py] ytisf/thezoo A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
  • [5226Star][13d] [Shell] denisidoro/navi An interactive cheatsheet tool for the command-line
  • [5116Star][11d] [ASP] hq450/fancyss fancyss is a project providing tools to across the GFW on asuswrt/merlin based router.
  • [5007Star][2m] [Py] snare/voltron A hacky debugger UI for hackers
  • [4857Star][13d] [Go] gcla/termshark A terminal UI for tshark, inspired by Wireshark
  • [4810Star][8m] [Py] 10se1ucgo/disablewintracking Uses some known methods that attempt to minimize tracking in Windows 10
  • [4747Star][8d] [C++] paddlepaddle/paddle-lite Multi-platform high performance deep learning inference engine (『飞桨』多平台高性能深度学习预测引擎)
  • [4651Star][13d] powershell/win32-openssh Win32 port of OpenSSH
  • [4610Star][1y] [C] upx/upx UPX - the Ultimate Packer for eXecutables
  • [4600Star][12m] [Py] ecthros/uncaptcha2 defeating the latest version of ReCaptcha with 91% accuracy
  • [4597Star][12d] [C++] mozilla/rr Record and Replay Framework
  • [4541Star][4m] [TS] apis-guru/graphql-voyager
  • [4352Star][1y] [Py] lennylxx/ipv6-hosts Fork of
  • [4314Star][15d] [Rust] timvisee/ffsend Easily and securely share files from the command line
  • [4258Star][12m] [JS] butterproject/butter-desktop All the free parts of Popcorn Time
  • [4062Star][3m] [Java] jesusfreke/smali smali/baksmali
  • [4060Star][2m] [JS] sigalor/whatsapp-web-reveng Reverse engineering WhatsApp Web.
  • [4003Star][11d] [Go] dexidp/dex OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors
  • [3980Star][1m] [Rust] svenstaro/genact a nonsense activity generator
  • [3960Star][11d] [Py] angr/angr A powerful and user-friendly binary analysis platform!
  • [3954Star][16d] [Go] eranyanay/1m-go-websockets handling 1M websockets connections in Go
  • [3939Star][15d] [C] aquynh/capstone Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
  • [3908Star][12d] [C++] baldurk/renderdoc RenderDoc is a stand-alone graphics debugging tool.
  • [3844Star][2m] [ObjC] sveinbjornt/sloth Mac app that shows all open files, directories and sockets in use by all running processes. Nice GUI for lsof.
  • [3773Star][25d] jjqqkk/chromium Chromium browser with SSL VPN. Use this browser to unblock websites.
  • [3768Star][2m] [Go] microsoft/ethr Ethr is a Network Performance Measurement Tool for TCP, UDP & HTTP.
  • [3749Star][12d] [Go] hashicorp/consul-template Template rendering, notifier, and supervisor for
  • [3690Star][21d] [JS] lesspass/lesspass
  • [3688Star][29d] [HTML] hamukazu/lets-get-arrested This project is intended to protest against the police in Japan
  • [3627Star][26d] [HTML] consensys/smart-contract-best-practices A guide to smart contract security best practices
  • [3608Star][9d] [Pascal] cheat-engine/cheat-engine Cheat Engine. A development environment focused on modding
  • [3538Star][5m] [Shell] chengr28/revokechinacerts Revoke Chinese certificates.
  • [3505Star][16d] [C] cyan4973/xxhash Extremely fast non-cryptographic hash algorithm
  • [3451Star][19d] [C] mikebrady/shairport-sync AirPlay audio player. Shairport Sync adds multi-room capability with Audio Synchronisation
  • [3306Star][19d] [C] microsoft/windows-driver-samples This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.
  • [3295Star][15d] [JS] koenkk/zigbee2mqtt Zigbee
  • [3289Star][15d] [C] virustotal/yara The pattern matching swiss knife
  • [3280Star][29d] [Java] oldmanpushcart/greys-anatomy Java诊断工具
  • [3243Star][14d] [Shell] gfw-breaker/ssr-accounts 一键部署Shadowsocks服务;免费Shadowsocks账号分享;免费SS账号分享; 翻墙;无界,自由门,SquirrelVPN
  • [3233Star][25d] [C] tmate-io/tmate Instant Terminal Sharing
  • [3219Star][2m] [TS] google/incremental-dom An in-place DOM diffing library
  • [3202Star][1y] [Shell] toyodadoubi/doubi 一个逗比写的各种逗比脚本~
  • [3188Star][11d] [C] meetecho/janus-gateway Janus WebRTC Server
  • [3131Star][2m] [CSS] readthedocs/sphinx_rtd_theme Sphinx theme for readthedocs.org
  • [3129Star][13d] [C] qemu/qemu Official QEMU mirror. Please see
  • [3120Star][11d] [Go] tencent/bk-cmdb 蓝鲸智云配置平台(BlueKing CMDB)
  • [3108Star][1m] [C] unicorn-engine/unicorn Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)
  • [3052Star][4m] [C++] google/robotstxt The repository contains Google's robots.txt parser and matcher as a C++ library (compliant to C++11).
  • [2993Star][18d] [Py] quantaxis/quantaxis QUANTAXIS 支持任务调度 分布式部署的 股票/期货/自定义市场 数据/回测/模拟/交易/可视化 纯本地PAAS量化解决方案
  • [2980Star][14d] [ObjC] google/santa A binary whitelisting/blacklisting system for macOS
  • [2948Star][1m] [C] libfuse/sshfs A network filesystem client to connect to SSH servers
  • [2898Star][8m] [C] p-h-c/phc-winner-argon2 The password hash Argon2, winner of PHC
  • [2872Star][14d] [C] lxc/lxc LXC - Linux Containers
  • [2854Star][1m] [Py] espressif/esptool ESP8266 and ESP32 serial bootloader utility
  • [2848Star][6m] [Py] instantbox/instantbox Get a clean, ready-to-go Linux box in seconds.
  • [2833Star][2m] [Assembly] cirosantilli/x86-bare-metal-examples Dozens of minimal operating systems to learn x86 system programming. Tested on Ubuntu 17.10 host in QEMU 2.10 and real hardware. Userland cheat at:
  • [2815Star][20d] [C] processhacker/processhacker A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
  • [2808Star][10m] [Py] plasma-disassembler/plasma Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
  • [2789Star][13d] [C++] qtox/qtox qTox is a chat, voice, video, and file transfer IM client using the encrypted peer-to-peer Tox protocol.
  • [2772Star][2m] [JS] trufflesuite/ganache-cli Fast Ethereum RPC client for testing and development
  • [2760Star][10d] [TS] webhintio/hint
  • [2718Star][3m] [Py] drivendata/cookiecutter-data-science A logical, reasonably standardized, but flexible project structure for doing and sharing data science work.
  • [2687Star][11d] [Go] adguardteam/adguardhome Network-wide ads & trackers blocking DNS server
  • [2631Star][8m] leandromoreira/linux-network-performance-parameters Learn where some of the network sysctl variables fit into the Linux/Kernel network flow
  • [2627Star][23d] [JS] popcorn-official/popcorn-desktop Popcorn Time is a multi-platform, free software BitTorrent client that includes an integrated media player. Desktop ( Windows / Mac / Linux ) a Butter-Project Fork
  • [2621Star][2m] pditommaso/awesome-pipeline A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin
  • [2619Star][2m] [Swift] zhuhaow/nekit A toolkit for Network Extension Framework
  • [2615Star][1m] [JS] knownsec/kcon KCon is a famous Hacker Con powered by Knownsec Team.
  • [2587Star][10d] [C] esnet/iperf A TCP, UDP, and SCTP network bandwidth measurement tool
  • [2535Star][3m] [Java] jboss-javassist/javassist Java bytecode engineering toolkit
  • [2478Star][11m] [JS] weixin/miaow A set of plugins for Sketch include drawing links & marks, UI Kit & Color sync, font & text replacing.
  • [2474Star][25d] [JS] vitaly-t/pg-promise PostgreSQL interface for Node.js
  • [2391Star][21d] [Java] mock-server/mockserver MockServer enables easy mocking of any system you integrate with via HTTP or HTTPS with clients written in Java, JavaScript and Ruby. MockServer also includes a proxy that introspects all proxied traffic including encrypted SSL traffic and supports Port Forwarding, Web Proxying (i.e. HTTP proxy), HTTPS Tunneling Proxying (using HTTP CONNECT) and…
  • [2364Star][10d] [C] domoticz/domoticz monitor and configure various devices like: Lights, Switches, various sensors/meters like Temperature, Rain, Wind, UV, Electra, Gas, Water and much more
  • [2345Star][4m] [Go] vuvuzela/vuvuzela Private messaging system that hides metadata
  • [2344Star][16d] [C] tsl0922/ttyd Share your terminal over the web
  • [2340Star][2m] [JS] pa11y/pa11y Pa11y is your automated accessibility testing pal
  • [2305Star][2m] [C] moby/hyperkit A toolkit for embedding hypervisor capabilities in your application
  • [2286Star][1m] [JS] talkingdata/inmap 大数据地理可视化
  • [2260Star][13d] dumb-password-rules/dumb-password-rules Shaming sites with dumb password rules.
  • [2217Star][14d] [Go] google/mtail extract whitebox monitoring data from application logs for collection in a timeseries database
  • [2214Star][18d] getlantern/lantern-binaries Lantern installers binary downloads.
  • [2211Star][1m] [C++] google/bloaty Bloaty McBloatface: a size profiler for binaries
  • [2194Star][13d] [C] armmbed/mbedtls An open source, portable, easy to use, readable and flexible SSL library
  • [2137Star][19d] [Assembly] pret/pokered disassembly of Pokémon Red/Blue
  • [2132Star][20d] goq/telegram-list List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
  • [2093Star][10d] [C] flatpak/flatpak Linux application sandboxing and distribution framework
  • [2092Star][26d] swiftonsecurity/sysmon-config Sysmon configuration file template with default high-quality event tracing
  • [2080Star][2m] [Go] theupdateframework/notary Notary is a project that allows anyone to have trust over arbitrary collections of data
  • [2053Star][4m] [Go] maxmcd/webtty Share a terminal session over WebRTC
  • [2053Star][24d] [C#] mathewsachin/captura Capture Screen, Audio, Cursor, Mouse Clicks and Keystrokes
  • [2052Star][13d] [C++] openthread/openthread OpenThread released by Google is an open-source implementation of the Thread networking protocol
  • [2031Star][10m] [C] dekunukem/nintendo_switch_reverse_engineering A look at inner workings of Joycon and Nintendo Switch
  • [2003Star][2m] [C++] asmjit/asmjit Complete x86/x64 JIT and AOT Assembler for C++
  • [1998Star][2m] [Swift] github/softu2f Software U2F authenticator for macOS
  • [1955Star][11d] [Go] solo-io/gloo An Envoy-Powered API Gateway
  • [1949Star][17d] [C] microsoft/procdump-for-linux A Linux version of the ProcDump Sysinternals tool
  • [1930Star][22d] [C++] mhammond/pywin32 Python for Windows (pywin32) Extensions
  • [1907Star][18d] [Go] minishift/minishift Run OpenShift 3.x locally
  • [1899Star][25d] [C++] acidanthera/lilu Arbitrary kext and process patching on macOS
  • [1877Star][25d] [Java] adoptopenjdk/jitwatch Log analyser / visualiser for Java HotSpot JIT compiler. Inspect inlining decisions, hot methods, bytecode, and assembly. View results in the JavaFX user interface.
  • [1863Star][10d] [C++] pytorch/glow Compiler for Neural Network hardware accelerators
  • [1859Star][12m] [C++] googlecreativelab/open-nsynth-super Open NSynth Super is an experimental physical interface for the NSynth algorithm
  • [1854Star][19d] [C] github/glb-director GitHub Load Balancer Director and supporting tooling.
  • [1852Star][1y] [Py] jinnlynn/genpac PAC/Dnsmasq/Wingy file Generator, working with gfwlist, support custom rules.
  • [1851Star][1y] [Java] yeriomin/yalpstore Download apks from Google Play Store
  • [1848Star][9m] [Py] netflix-skunkworks/stethoscope Personalized, user-focused recommendations for employee information security.
  • [1846Star][3m] [C] retroplasma/earth-reverse-engineering Reversing Google's 3D satellite mode
  • [1837Star][3m] [Go] influxdata/kapacitor Open source framework for processing, monitoring, and alerting on time series data
  • [1827Star][13d] [Py] trailofbits/manticore Symbolic execution tool
  • [1816Star][29d] [Go] gdamore/tcell Tcell is an alternate terminal package, similar in some ways to termbox, but better in others.
  • [1786Star][1m] [C++] apitrace/apitrace Tools for tracing OpenGL, Direct3D, and other graphics APIs
  • [1781Star][26d] [PHP] ezyang/htmlpurifier Standards compliant HTML filter written in PHP
  • [1779Star][29d] 17mon/china_ip_list
  • [1761Star][1y] [JS] puppeteer/examples Use case-driven examples for using Puppeteer and headless chrome
  • [1761Star][13d] [C] google/wuffs Wrangling Untrusted File Formats Safely
  • [1756Star][16d] [PHP] wordpress/wordpress-coding-standards PHP_CodeSniffer rules (sniffs) to enforce WordPress coding conventions
  • [1727Star][8d] [TSQL] brentozarultd/sql-server-first-responder-kit sp_Blitz, sp_BlitzCache, sp_BlitzFirst, sp_BlitzIndex, and other SQL Server scripts for health checks and performance tuning.
  • [1722Star][4m] [Py] anorov/cloudflare-scrape A Python module to bypass Cloudflare's anti-bot page.
  • [1714Star][1m] [Go] hashicorp/memberlist Golang package for gossip based membership and failure detection
  • [1698Star][21d] [C++] microsoft/detours Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
  • [1676Star][10d] [Java] apache/geode Apache Geode
  • [1672Star][7m] [C] easyhook/easyhook The reinvention of Windows API Hooking
  • [1668Star][3m] [Py] boppreh/keyboard Hook and simulate global keyboard events on Windows and Linux.
  • [1659Star][25d] [JS] tylerbrock/mongo-hacker MongoDB Shell Enhancements for Hackers
  • [1650Star][13d] sarojaba/awesome-devblog 어썸데브블로그. 국내 개발 블로그 모음(only 실명으로).
  • [1637Star][12d] [JS] efforg/privacybadger Privacy Badger is a browser extension that automatically learns to block invisible trackers.
  • [1624Star][9m] [JS] localtunnel/server server for localtunnel.me
  • [1620Star][16d] [C++] lief-project/lief Library to Instrument Executable Formats
  • [1592Star][2m] [ObjC] ealeksandrov/provisionql Quick Look plugin for apps and provisioning profile files
  • [1584Star][1y] [C] qihoo360/phptrace A tracing and troubleshooting tool for PHP scripts.
  • [1572Star][1m] [C] codahale/bcrypt-ruby Ruby binding for the OpenBSD bcrypt() password hashing algorithm, allowing you to easily store a secure hash of your users' passwords.
  • [1562Star][1m] [C] p-gen/smenu Terminal utility that reads words from standard input or from a file and creates an interactive selection window just below the cursor. The selected word(s) are sent to standard output for further processing.
  • [1562Star][19d] [Java] gchq/gaffer A large-scale entity and relation database supporting aggregation of properties
  • [966Star][7m] [PHP] jenssegers/optimus id transformation With this library, you can transform your internal id's to obfuscated integers based on Knuth's integer has和
  • [906Star][7m] [C++] dfhack/dfhack Memory hacking library for Dwarf Fortress and a set of tools that use it
  • [895Star][12m] [JS] levskaya/jslinux-deobfuscated An old version of Mr. Bellard's JSLinux rewritten to be human readable, hand deobfuscated and annotated.
  • [706Star][1y] [Jupyter Notebook] anishathalye/obfuscated-gradients Obfuscated Gradients Give a False Sense of Security: Circumventing Defenses to Adversarial Examples
  • [658Star][10m] [Jupyter Notebook] supercowpowers/data_hacking Data Hacking Project
  • [657Star][1y] [Rust] endgameinc/xori Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode
  • [637Star][21d] [PS] olafhartong/sysmon-modular A repository of sysmon configuration modules
  • [587Star][6m] nshalabi/sysmontools Utilities for Sysmon
  • [568Star][11m] [JS] raineorshine/solgraph Visualize Solidity control flow for smart contract security analysis.
  • [523Star][2m] mhaggis/sysmon-dfir Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  • [522Star][4m] [Java] java-deobfuscator/deobfuscator The real deal
  • [507Star][8m] [JS] mindedsecurity/jstillery Advanced JavaScript Deobfuscation via Partial Evaluation
  • [449Star][12m] [C++] ntquery/scylla Imports Reconstructor
  • [447Star][3m] [Go] retroplasma/flyover-reverse-engineering Reversing Apple's 3D satellite mode
  • [446Star][11m] [Batchfile] ion-storm/sysmon-config Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
  • [408Star][19d] [Py] crytic/slither Static Analyzer for Solidity
  • [383Star][1y] [HTML] maestron/reverse-engineering-tutorials Reverse Engineering Tutorials
  • [344Star][1y] [Ruby] calebfenton/dex-oracle A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
  • [308Star][25d] [Py] baderj/domain_generation_algorithms Some results of my DGA reversing efforts
  • [306Star][2m] [C] nagyd/sdlpop An open-source port of Prince of Persia, based on the disassembly of the DOS version.
  • [291Star][28d] [C] tomb5/tomb5 Chronicles Disassembly translated to C source code.
  • [265Star][3m] [Assembly] pret/pokeyellow Disassembly of Pokemon Yellow
  • [240Star][4m] [JS] consensys/surya A set of utilities for exploring Solidity contracts
  • [214Star][2m] [Py] rpisec/llvm-deobfuscator
  • [211Star][12m] [Java] neo23x0/fnord Pattern Extractor for Obfuscated Code

Tool-Other


angr

Tool

  • [534Star][12d] [Py] angr/angr-doc Documentation for the angr suite
  • [305Star][2m] [Py] salls/angrop a rop gadget finder and chain builder

Post


Debug

Tool

  • [1450Star][10d] [Go] google/gapid Graphics API Debugger
  • [1422Star][17d] [C++] eteran/edb-debugger edb is a cross platform AArch32/x86/x86-64 debugger.
  • [1413Star][19d] [Go] cosmos72/gomacro Interactive Go interpreter and debugger with REPL, Eval, generics and Lisp-like macros
  • [1275Star][4m] [Go] solo-io/squash The debugger for microservices
  • [1147Star][5m] [C++] cgdb/cgdb Console front-end to the GNU debugger
  • [1128Star][20d] [C] blacksphere/blackmagic In application debugger for ARM Cortex microcontrollers.
  • [899Star][10d] [Py] derekselander/lldb A collection of LLDB aliases/regexes and Python scripts to aid in your debugging sessions
  • [836Star][8d] [C++] tasvideos/bizhawk BizHawk is a multi-system emulator written in C#. BizHawk provides nice features for casual gamers such as full screen, and joypad support in addition to full rerecording and debugging tools for all system cores.
  • [560Star][21d] [C#] microsoft/miengine The Visual Studio MI Debug Engine ("MIEngine") provides an open-source Visual Studio Debugger extension that works with MI-enabled debuggers such as gdb, lldb, and clrdbg.
  • [521Star][1y] [C] wubingzheng/memleax debugs memory leak of running process. Not maintained anymore, try libleak please.
  • [462Star][5m] [C++] emoon/prodbg Debugging the way it's meant to be done
  • [423Star][4m] [C++] cobaltfusion/debugviewpp DebugView++, collects, views, filters your application logs, and highlights information that is important to you!
  • [418Star][26d] [C++] simonkagstrom/kcov Code coverage tool for compiled programs, Python and Bash which uses debugging information to collect and report data without special compilation options
  • [377Star][1m] [Py] pdbpp/pdbpp pdb++, a drop-in replacement for pdb (the Python debugger)
  • [332Star][8m] [Py] romanvm/python-web-pdb Web-based remote UI for Python's PDB debugger
  • [306Star][21d] [Java] widdix/aws-s3-virusscan Free Antivirus for S3 Buckets
  • [291Star][12d] [Py] sosreport/sos A unified tool for collecting system logs and other debug information
  • [285Star][2m] [C++] changeofpace/viviennevmm VivienneVMM is a stealthy debugging framework implemented via an Intel VT-x hypervisor.
  • [272Star][4m] [Py] mariovilas/winappdbg WinAppDbg Debugger
  • [270Star][21d] [Py] ionelmc/python-manhole Debugging manhole for python applications.
  • [250Star][2m] [Py] quantopian/qdb Quantopian Remote Debugger for Python
  • [240Star][6m] [C++] facebook/ds2 Debug server for lldb.
  • [239Star][8m] [C++] strivexjun/xantidebug VMProtect 3.x Anti-debug Method Improved
  • [239Star][8m] [Py] beeware/bugjar A interactive graphical debugger for Python code.
  • [233Star][2m] [Py] gilligan/vim-lldb lldb debugger integration plugin for vim
  • [220Star][9m] letoram/senseye Dynamic Visual Debugging / Reverse Engineering Toolsuite
  • [218Star][2m] [Py] nteseyes/pylane An python vm injector with debug tools, based on gdb.
  • [213Star][12d] [C++] thalium/icebox Virtual Machine Introspection, Tracing & Debugging
  • [209Star][2m] [C] joyent/mdb_v8 postmortem debugging for Node.js and other V8-based programs
  • [200Star][6m] [C++] rainers/cv2pdb converter of DMD CodeView/DWARF debug information to PDB files

Post


BAP

Tool

Post


BinNavi

Tool

Post


Decompiler

Tool

Post


Disassemble

Tool

  • [1374Star][20d] [C] zyantific/zydis Fast and lightweight x86/x86-64 disassembler library
  • [1346Star][12m] [Rust] das-labor/panopticon A libre cross-platform disassembler.
  • [877Star][11m] [C++] wisk/medusa An open source interactive disassembler
  • [835Star][8d] [GLSL] khronosgroup/spirv-cross a practical tool and library for performing reflection on SPIR-V and disassembling SPIR-V back to high level languages.
  • [828Star][3m] [C++] redasmorg/redasm The OpenSource Disassembler
  • [627Star][3m] [C] gdabah/distorm Powerful Disassembler Library For x86/AMD64
  • [430Star][2m] [C#] 0xd4d/iced x86/x64 disassembler, instruction decoder & encoder
  • [351Star][21d] [Ruby] jjyg/metasm This is the main repository for metasm, a free assembler / disassembler / compiler written in ruby
  • [246Star][5m] [Py] bontchev/pcodedmp A VBA p-code disassembler

Post


GDB

Tool

  • [7019Star][10d] [JS] cs01/gdbgui Browser-based frontend to gdb (gnu debugger). Add breakpoints, view the stack, visualize data structures, and more in C, C++, Go, Rust, and Fortran. Run gdbgui from the terminal and a new tab will open in your browser.
  • [6052Star][13d] [Py] cyrus-and/gdb-dashboard Modular visual interface for GDB in Python
  • [3784Star][11m] [Py] longld/peda Python Exploit Development Assistance for GDB
  • [2568Star][1m] [Py] hugsy/gef GDB Enhanced Features for exploit devs & reversers
  • [2439Star][16d] [Py] pwndbg/pwndbg Exploit Development and Reverse Engineering with GDB Made Easy
  • [1417Star][3m] [Go] hellogcc/100-gdb-tips A collection of gdb tips. 100 maybe just mean many here.
  • [452Star][3m] [Py] scwuaptx/pwngdb gdb for pwn
  • [446Star][1y] [Py] jfoote/exploitable The 'exploitable' GDB plugin. I don't work at CERT anymore, but here is the original homepage:
  • [244Star][2m] [JS] bet4it/hyperpwn A hyper plugin to provide a flexible GDB GUI with the help of GEF, pwndbg or peda
  • [208Star][2m] [Py] sakhnik/nvim-gdb Neovim thin wrapper for GDB, LLDB and PDB

Post


Monitor

Tools

Radare2


Plugins&&Scripts

Radare2

  • [11588Star][12d] [C] radareorg/radare2 unix-like reverse engineering framework and commandline tools

Recent Add

With Other Tools

No Category

IDA

GUI

GUI

Cutter

  • [6176Star][8d] [C++] radareorg/cutter Reverse Engineering Platform powered by radare2

Posts&&Videos

未分类

Cutter

BinaryNinja


Plugins&&Scripts

Recent Add

  • [2820Star][1m] [Py] androguard/androguard Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
  • [328Star][5m] [Py] vector35/binaryninja-api Public API, examples, documentation and issues for Binary Ninja
  • [280Star][3m] [Py] pbiernat/ripr Package Binary Code as a Python class using Binary Ninja and Unicorn Engine
  • [201Star][14d] [JS] ret2got/disasm.pro A realtime assembler/disassembler (formerly known as disasm.ninja)

With Other Tools

No Category

IDA


Posts&&Videos

Windows


PE

Tool

  • [877Star][8m] [Py] erocarrera/pefile pefile is a Python module to read and work with PE (Portable Executable) files
  • [634Star][10d] [C] thewover/donut Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
  • [537Star][1y] [C#] ghostpack/safetykatz combination of slightly modified version of Mimikatz project and .NET PE Loader.
  • [388Star][1y] [Assembly] hasherezade/pe_to_shellcode Converts PE into a shellcode
  • [385Star][3m] [Jupyter Notebook] endgameinc/ember a collection of features from PE files that serve as a benchmark dataset for researchers.
  • [344Star][1y] [Assembly] egebalci/amber a reflective PE packer for bypassing security products and mitigations
  • [337Star][5m] [C] merces/pev The PE file analysis toolkit
  • [316Star][24d] [C++] trailofbits/pe-parse Principled, lightweight C/C++ PE parser
  • [315Star][14d] [VBA] itm4n/vba-runpe A VBA implementation of the RunPE technique or how to bypass application whitelisting.
  • [296Star][12d] [C++] hasherezade/libpeconv A library to load, manipulate, dump PE files. See also:
  • [285Star][7m] [Java] katjahahn/portex Java library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness

Post


DLL

Recent Add

Tools

  • [1915Star][22d] [C#] lucasg/dependencies A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.
  • [1333Star][10m] [C] fancycode/memorymodule Library to load a DLL from memory.
  • [1146Star][27d] [C#] perfare/il2cppdumper Restore dll from Unity il2cpp binary file (except code)
  • [793Star][11m] [C#] terminals-origin/terminals Terminals is a secure, multi tab terminal services/remote desktop client. It uses Terminal Services ActiveX Client (mstscax.dll). The project started from the need of controlling multiple connections simultaneously. It is a complete replacement for the mstsc.exe (Terminal Services) client. This is official source moved from Codeplex.
  • [388Star][7m] [C++] hasherezade/dll_to_exe Converts a DLL into EXE
  • [363Star][19d] [C#] 3f/dllexport .NET DllExport
  • [240Star][10m] [C++] wbenny/detoursnt Detours with just single dependency - NTDLL
  • [230Star][1y] [C#] misaka-mikoto-tech/monohooker hook C# method at runtime without modify dll file (such as UnityEditor.dll)
  • [215Star][6m] [C#] erfg12/memory.dll C# Hacking library for making PC game trainers.
  • [214Star][26d] [C++] chuyu-team/mint Contains the definitions for the Windows Internal UserMode API from ntdll.dll, samlib.dll and winsta.dll.

Post

DLL Injection

Tools

  • [713Star][5m] [C++] darthton/xenos Windows dll injector
  • [588Star][2m] [PS] monoxgas/srdi Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

Post

DLL Hijack

Tools

  • [431Star][7m] [Pascal] mojtabatajik/robber Robber is open source tool for finding executables prone to DLL hijacking
  • [299Star][11m] [C++] anhkgg/superdllhijack A general DLL hijack technology, don't need to manually export the same function interface of the DLL, so easy!

Post


UAC

Tools

  • [2355Star][11d] [C] hfiref0x/uacme Defeating Windows User Account Control
  • [2307Star][1m] [PS] k8gege/k8tools K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
  • [1688Star][3m] [Py] rootm0s/winpwnage UAC bypass, Elevate, Persistence and Execution methods

Post


Sysmon

Tools

  • [206Star][1y] [JS] jpcertcc/sysmonsearch Investigate suspicious activity by visualizing Sysmon's event log

Post


ETW

Tools

  • [1228Star][10d] [JS] jpcertcc/logontracer Investigate malicious Windows logon by visualizing and analyzing Windows event log
  • [865Star][22d] [C++] google/uiforetw User interface for recording and managing ETW traces
  • [654Star][10m] [Roff] palantir/windows-event-forwarding A repository for using windows event forwarding for incident detection and response
  • [609Star][19d] [PS] sbousseaden/evtx-attack-samples windows events samples associated to specific attack and post-exploitation techniques
  • [504Star][10m] [C#] lowleveldesign/wtrace Command line tracing tool for Windows, based on ETW.
  • [479Star][5m] [PS] sans-blue-team/deepbluecli a PowerShell Module for Threat Hunting via Windows Event Logs
  • [446Star][9m] [PS] nsacyber/event-forwarding-guidance Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
  • [393Star][10m] [Py] williballenthin/python-evtx Pure Python parser for recent Windows Event Log files (.evtx)
  • [341Star][1y] [C++] qax-a-team/eventcleaner A tool mainly to erase specified records from Windows event logs, with additional functionalities.
  • [306Star][1m] [C#] zodiacon/procmonx Extended Process Monitor-like tool based on Event Tracing for Windows
  • [282Star][3m] [C#] fireeye/silketw flexible C# wrappers for ETW
  • [282Star][10m] [C#] nsacyber/windows-event-log-messages Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
  • [261Star][3m] [C++] gametechdev/presentmon Tool for collection and processing of ETW events related to DXGI presentation.
  • [249Star][3m] [C++] microsoft/krabsetw KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.

Post


AppLocker

Tools

Post


Tools

Recent Add

Procmon

.NET

  • [12676Star][14d] [C#] 0xd4d/dnspy .NET debugger and assembly editor
  • [9261Star][11d] [C#] icsharpcode/ilspy .NET Decompiler
  • [3694Star][27d] [C#] 0xd4d/de4dot .NET deobfuscator and unpacker.
  • [3263Star][7m] [JS] sindresorhus/speed-test Test your internet connection speed and ping using speedtest.net from the CLI
  • [1657Star][14d] [C#] jbevain/cecil Cecil is a library to inspect, modify and create .NET programs and libraries.
  • [217Star][11m] [C#] rainwayapp/warden Warden.NET is an easy to use process management library for keeping track of processes on Windows.

Environment Setup

Process Injection

Code Injection

Memory Module

VT&&Hypbervisor

  • [1348Star][22d] [C] intel/haxm cross-platform hardware-assisted virtualization engine (hypervisor), widely used as an accelerator for Android Emulator and QEMU
  • [1011Star][1y] [C] ionescu007/simplevisor a simple, portable, Intel VT-x hypervisor with two specific goals: using the least amount of assembly code (10 lines), and having the smallest amount of VMX-related code to support dynamic hyperjacking and unhyperjacking (that is, virtualizing the host state from within the host). It works on Windows and UEFI.
  • [717Star][23d] [C++] tandasat/hyperplatform Intel VT-x based hypervisor aiming to provide a thin VM-exit filtering platform on Windows.
  • [570Star][12m] [C] asamy/ksm A fast, hackable and simple x64 VT-x hypervisor for Windows and Linux. Builtin userspace sandbox and introspection engine.

Kernel&&Driver

Registry

SystemCall

Other

  • [949Star][3m] [C] basil00/divert Windows Packet Divert
  • [863Star][14d] [C++] henrypp/simplewall Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.
  • [726Star][2m] [Py] diyan/pywinrm Python library for Windows Remote Management (WinRM)
  • [570Star][1m] [C] hfiref0x/winobjex64 Windows Object Explorer 64-bit
  • [463Star][8m] [C#] microsoft/dbgshell A PowerShell front-end for the Windows debugger engine.
  • [418Star][15d] [C] samba-team/samba he standard Windows interoperability suite of programs for Linux and Unix
  • [389Star][2m] [C#] microsoft/binskim A binary static analysis tool that provides security and correctness results for Windows Portable Executable and *nix ELF binary formats
  • [387Star][19d] [Jupyter Notebook] microsoft/windowsdefenderatp-hunting-queries Sample queries for Advanced hunting in Microsoft Defender ATP
  • [370Star][27d] [Ruby] winrb/winrm Ruby library for Windows Remote Management
  • [360Star][12d] [C#] digitalruby/ipban Monitors failed logins and bad behavior and bans ip addresses on Windows and Linux. Highly configurable, lean and powerful.
  • [269Star][12m] [Py] hakril/pythonforwindows A codebase aimed to make interaction with Windows and native execution easier
  • [238Star][5m] [PS] microsoft/aaronlocker Robust and practical application whitelisting for Windows
  • [233Star][10m] [Go] masterzen/winrm Command-line tool and library for Windows remote command execution in Go
  • [232Star][1y] [C++] ionescu007/simpleator Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
  • [229Star][4m] [C] tishion/mmloader A library for loading dll module bypassing windows PE loader from memory (x86/x64)
  • [228Star][3m] [C] leecher1337/ntvdmx64 Run Microsoft Windows NTVDM (DOS) on 64bit Editions
  • [226Star][1y] [C++] rexdf/commandtrayhost A command line program monitor systray for Windows
  • [210Star][3m] adguardteam/adguardforwindows AdGuard for Windows open bug tracker
  • [208Star][10m] [C] hzqst/unicorn_pe Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
  • [205Star][3m] [C] jasonwhite/ducible A tool to make Windows builds reproducible.

Posts&&Videos

Recent Add

DEP

Procmon

Linux


ELF

Tools

  • [930Star][15d] [Py] eliben/pyelftools Parsing ELF and DWARF in Python
  • [787Star][2m] [C] nixos/patchelf A small utility to modify the dynamic linker and RPATH of ELF executables
  • [411Star][9m] [Assembly] mewmew/dissection The dissection of a simple "hello world" ELF binary.
  • [337Star][9m] [Py] rek7/fireelf Fileless Linux Malware Framework
  • [277Star][4m] [Shell] cryptolok/aslray Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying
  • [233Star][2m] [C] elfmaster/libelfmaster Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools

Post


Tools

Recent Add

  • [1450Star][2m] [C] feralinteractive/gamemode Optimise Linux system performance on demand
  • [1413Star][21d] [C++] google/nsjail A light-weight process isolation tool, making use of Linux namespaces and seccomp-bpf syscall filters (with help of the kafel bpf language)
  • [895Star][29d] [C] buserror/simavr simavr is a lean, mean and hackable AVR simulator for linux & OSX
  • [759Star][1m] [Py] korcankaraokcu/pince A reverse engineering tool that'll supply the place of Cheat Engine for linux
  • [741Star][2m] [C] yrp604/rappel A linux-based assembly REPL for x86, amd64, armv7, and armv8
  • [731Star][17d] [C] strace/strace strace is a diagnostic, debugging and instructional userspace utility for Linux
  • [570Star][12m] [C] asamy/ksm A fast, hackable and simple x64 VT-x hypervisor for Windows and Linux. Builtin userspace sandbox and introspection engine.
  • [565Star][12d] [C++] intel/linux-sgx Intel SGX for Linux*
  • [560Star][2m] [Py] autotest/autotest Fully automated tests on Linux
  • [536Star][5m] [C++] nytrorst/shellcodecompiler compiles C/C++ style code into a small, position-independent and NULL-free shellcode for Windows (x86 and x64) and Linux (x86 and x64)
  • [509Star][8m] [C] iovisor/ply Dynamic Tracing in Linux
  • [468Star][9d] [C] libreswan/libreswan an Internet Key Exchange (IKE) implementation for Linux.
  • [441Star][12d] [C] facebook/openbmc OpenBMC is an open software framework to build a complete Linux image for a Board Management Controller (BMC).
  • [405Star][10m] [Shell] microsoft/linux-vm-tools Hyper-V Linux Guest VM Enhancements
  • [393Star][2m] [Shell] yadominjinta/atilo Linux installer for termux
  • [354Star][2m] [C] seccomp/libseccomp an easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism
  • [331Star][5m] [Go] capsule8/capsule8 cloud-native behavioral security monitoring
  • [282Star][2m] [Py] facebook/fbkutils A variety of utilities built and maintained by Facebook's Linux Kernel Team that we wish to share with the community.
  • [228Star][8m] [C] wkz/ply Light-weight Dynamic Tracer for Linux

Post&&Videos

Recent Add

Contribute

Contents auto exported by Our System, please raise Issue if you have any question.