OSS-Fuzz - continuous fuzzing for open source software.

Musings from a life in Security.

forked

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps …

The Open Cookbook for Top-Tier Code Large Language Model

RetDec is a retargetable machine-code decompiler based on LLVM.

chroot, mount --bind, and binfmt_misc without privilege/setup for Linux

A self-hosted Fuzzing-As-A-Service platform

Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc

Winnie makes fuzzing Windows applications easy

Square Attack: a query-efficient black-box adversarial attack via random search [ECCV 2020]

🔥 Feature-rich interactive Jira command line.

Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.

The Micro-CMS for WebAssembly and Spin

Binance listing sniping bot built to purchase onchain as fast as possible

🏅State-of-the-art learned data structure that enables fast lookup, predecessor, range searches and updates in arrays of billions of items using orders of magnitude less space than traditional indexes

A helpful Java Deserialization exploit framework.

A tool to dump Java serialization streams in a more human readable form.

Securify v2.0

WebAssembly Micro Runtime (WAMR)

Static Analyzer for Solidity and Vyper

WasmEdge is a lightweight, high-performance, and extensible WebAssembly runtime for cloud native, edge, and decentralized applications. It powers serverless apps, embedded functions, microservices,…

Sandboxie Plus & Classic

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port thi…

FreeRDP is a free remote desktop protocol library and clients

parallel Python

DieHard: An error-resistant memory allocator for Windows, Linux, and Mac OS X

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security