Lists (8)
AI
Throw shit at models and see what happens.API
Flipper
Fuzzing
Throw shit at software and see what happens.Games
Related to videogamesRustacean Matchmaking
Fearless Concurrency!!1!Semgrep
The future of static analysisStatic Analysis
Because I failed at reverse engineering!Stars
Ghidra is a software reverse engineering (SRE) framework
ANTLR (ANother Tool for Language Recognition) is a powerful parser generator for reading, processing, executing, or translating structured text or binary files.
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
Gnirehtet provides reverse tethering for Android
BinNavi is a binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.
A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
The new bridge between Burp Suite and Frida!
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with minimum configuration and no coding effort. Tests are self-heali…
A syntax highlighting, code folding text editor for Java Swing applications.
Burp plugin able to find reflected XSS on page in real-time while browsing on site
Coverage-guided, in-process fuzzing for the JVM
Utility for comparing two OpenAPI specifications.
Automated HTTP Request Repeating With Burp Suite
Vulnerability scanner based on vulners.com search API
JQF + Zest: Coverage-guided semantic fuzzing for Java.
REST/JSON API to the Burp Suite security tool.
Public repository for Cantordust Ghidra plugin.
Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"