Stars
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…
Supply Chain Reaction: Enhancing the Precision of Vulnerability Triage using Code Reachability Information
Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…
This a setup for the Bsides 25 Munich Workshop: SBOM 1x1 that participants can use to use and test the different tools that are presented in the workshop.
gluesmith2021 / cve-bin-tool
Forked from ossf/cve-bin-toolThe CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others),…
Karonte is a static analysis tool to detect multi-binary vulnerabilities in embedded firmware
EMBA is a firmware security analysis tool. I created a module for EMBA (p51 mustang binwalk extractor) that checks if the firmware file system being analyzed has a deep max depth that can benefit f…
Pocket Flow: Codebase to Tutorial
SBOM benchmark for different metadata-based SBOM tools.
sbomqs: The Comprehensive SBOM Quality & Compliance Tool
Tool for decrypting Supermicro BMC firmware images
Reverse engineering resources for the eCOS platform.
The FLARE team's open-source tool to identify capabilities in executable files.
OSPG / binwalk
Forked from ReFirmLabs/binwalkFirmware Analysis Tool
Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. ⚡
A Curated list of Security Resources for all connected things
Tools for handling firmwares of DJI products, with focus on quadcopters.
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.