superr4y
Follow
Stars
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper us…
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
My simple Swiss Army knife for http/https troubleshooting and profiling.
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Six Degrees of Domain Admin
A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
Ruby BlackBag. Misc ruby-based pen-testing/reversing tools. Inspired by Matasano BlackBag.
Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)
The official documentation for Raspberry Pi computers and microcontrollers
Handy utilities for the angr binary analysis framework, most notably CFG visualization
Code and slides for Zer0Con 2018 talk: Building a 1-day Exploit for Google Chrome
Working POC of Mikrotik exploit from Vault 7 CIA Leaks
🎧 mpris media player command-line controller for vlc, mpv, RhythmBox, web browsers, cmus, mpd, spotify and others.
Fork of suckless screen locker for the extremely paranoid.
Clang's scan-build re-implementation in python
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)
HexType: Efficient Detection of Type Confusion Errors for C++
RetDec is a retargetable machine-code decompiler based on LLVM.
CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.