fuzzing-tutorial. Curated list of classic fuzzing books, papers about fuzzing at information security top conferences over the years, commonly used fuzzing tools, and resources that can help us use fuzzer easily.
407firmware-analysis-plus. Simulate firmware with one click of firmadyne (使用 firmadyne 一键模拟固件)
367elfspirit. ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.
146FridaHookAndroid. Frida-Android 进阶
74awesome-cybersecurity. A collection of awesome github repositories about security
74ReverseWidget. A lightweight GUI tool that implements some typical block cipher, coding, hashing, and multi-architecture assemble/disassembly framework, PE/AndroidAPP shell checker.
27Tools2Firmware. 固件分析工具
24Old-Firmware-Analysis-Toolkit. This is an older version branch of the fat project
18glib_demo. glib 主事件循环的案例
18CVE. Some Awesome and Simple CVE
12binwalk. Firmware Analysis Tool
8AndroidSocketClient. 这是一个使用socket进行通信的客户端,能够实现日常命令传输和大文件的断点续传。与一般socket不同的是,这里使用android作为客户端,python作为服务端,python源程序请参照本人github上的另外一个项目。
6grc. GRC,安全治理、风险管理、合规和审计等网络安全白皮书翻译
5cJsonDemo. 这是一个使用cJson的案例,并且可按需定制AFL Fuzz文件
3CVE-2024-32258.
3libcoap-demo. Examples that use the libcoap 4.2.1 library
3moonlight. MoonLight is a research project looking at efficient methods for designing a corpus typically for use in fuzzing campaigns. 一个用于精简afl语料库的工具,相比于afl-cmin,可以大幅提高裁剪速度。
3afl-unicorn. afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.
3cybertrans. 一些重要的网络安全作品原创翻译
2PeachPitExample. This is a set of files for testing the API
2android-reverse. 安卓逆向工具汇总 / Awsome Android Reverse Tools
2SocketServer. 这是一个实现多线程数据传输和断点续传的python服务器端程序
2MemDumper. Dump Memory of Process in Android and HarmonyOS
2unitracer. A great data flow tracking plug-in in IDA from Unicorn engine
1Firmadyne-binaries. 这是 Firmadyne 下的 Binaries,鉴于国内下载速度特别不稳定,分享给大家。直接放在 Firmadyne 的 binaries 目录下即可。
1IoTAttack. This is an Android software about information theft and modification of the Internet of Things. This software is dangerous, only for internal testing, do not use illegally.
1axmlprinter. Part of @adesnos androguard (http://code.google.com/androguard) project ported to Python 3.3
1MyTSP. 这是一个遗传算法的完整实现,未经处理的原始数据和已经保存的数据都存放在data目录下
1binbloom. Raw binary firmware analysis software
1secbook. 信息安全从业者书单推荐
1Android-BLE-Common-Library. A companion library for the Android BLE Library. Contains parsers for common Bluetooth SIG characteristics.
1keystore-explorer. KeyStore Explorer is a free GUI replacement for the Java command-line utilities keytool and jarsigner.
1wd-pretender. Python
1luadec. Lua Decompiler for OpenWRT 🏳️🌈
1