OSS-Fuzz vulnerabilities for OSV.

A library to parse gdb mi output and interact with gdb subprocesses

weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.

Project Zero Docs and Tools

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.

A new markup-based typesetting system that is powerful and easy to learn.

Monkey testing library for web apps and Node.js

Provides automated reverse engineering assistance through the use of local large language models (LLMs) on consumer hardware.

Automaticly generate your styled QR code in your web app.

An interactive tool for better understanding and intervening fuzzing process via real-time visualization.

LLM Frontend for Power Users.

A Gradio web UI for Large Language Models with support for multiple inference backends.

Atmospheric adventure chat for AI language models (KoboldAI, NovelAI, Pygmalion, OpenAI chatgpt, gpt-4)

IC-People is a local hosting service with an EPFL domain name provided by the School of Computer and Communication Sciences (IC)

Master the command line, in one page

AFL/AFL++ version FishFuzz

A collection of security papers on top-tier publications

一些阅读源码和Fuzzing 的经验,涵盖黑盒与白盒测试..

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Fuzz test your application using your OpenAPI or Swagger API definition without coding

Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

A repository for archiving my vulnerability discoveries.

20 benchmark programs