Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…

This a setup for the Bsides 25 Munich Workshop: SBOM 1x1 that participants can use to use and test the different tools that are presented in the workshop.

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others),…

EMBA - The firmware security analyzer

Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware

EMBA is a firmware security analysis tool. I created a module for EMBA (p51 mustang binwalk extractor) that checks if the firmware file system being analyzed has a deep max depth that can benefit f…

SSHamble: Unexpected Exposures in SSH

Pocket Flow: Codebase to Tutorial

Automatable setup of EMBA installations

SBOM benchmark for different metadata-based SBOM tools.

sbomqs: The Comprehensive SBOM Quality & Compliance Tool

Tool for decrypting Supermicro BMC firmware images

Reverse engineering resources for the eCOS platform.

Firmware Analysis Tool

The FLARE team's open-source tool to identify capabilities in executable files.

NVRAM emulator

Firmware Analysis Tool

Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. ⚡

A Curated list of Security Resources for all connected things

Tools for handling firmwares of DJI products, with focus on quadcopters.

A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.

A collection of my Semgrep rules to facilitate vulnerability research.

Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.