Ghidra is a software reverse engineering (SRE) framework

ANTLR (ANother Tool for Language Recognition) is a powerful parser generator for reading, processing, executing, or translating structured text or binary files.

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

Android and Java bytecode viewer

Gnirehtet provides reverse tethering for Android

The modern Java bytecode editor

BinNavi is a binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code.

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

The new bridge between Burp Suite and Frida!

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with minimum configuration and no coding effort. Tests are self-heali…

PacBot (Policy as Code Bot)

A syntax highlighting, code folding text editor for Java Swing applications.

Coverage-guided, in-process fuzzing for the JVM

Burp plugin able to find reflected XSS on page in real-time while browsing on site

Utility for comparing two OpenAPI specifications.

Automated HTTP Request Repeating With Burp Suite

Vulnerability scanner based on vulners.com search API

JQF + Zest: Coverage-guided semantic fuzzing for Java.

Advanced Burp Suite Logging Extension

Because just a dark theme wasn't enough!

REST/JSON API to the Burp Suite security tool.

Public repository for Cantordust Ghidra plugin.

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

INFILTRATE 2019 Demo Materials