Berlin

van Hauser

Elite
@vanhauser-thc

Security researcher since 1994 https://www.mh-sec.de/ https://www.thc.org/

thc-hydra. hydra

12k

thc-ipv6. IPv6 attack toolkit

1.2k

audit_scripts. Scripts to gather system configuration information for offline/remote auditing

85

afl-patches. Patches to afl to fix bugs or add enhancements

81

afl-dyninst. American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries

75

afl-pin. run AFL with pintool

67

dynTaintTracer. a taint tracer based on DynamoRIO, currently ARM only

41

afl-dynamorio. run AFL with dynamorio

37

vulntest. Static code analysis test source code

36

libfuzzer-cov. Get actually nice HTML coverage overview on libfuzzer runs

32

qemu_taint. First level taint implementation with qemu for linux user mode

28

peachpro. Dockerfile for peach pro with everything set up as needed

25

AutoNmap. Automated daily scan using Nmap and report on the differences

21

afl-simulate. Simulate afl-fuzz

16

fuzzing-targets. Some fuzzing targets for testing

9

CVE-2021-26855. PoC of proxylogon chain SSRF(CVE-2021-26855) to write file by testanull, censored by github

8

seccheck. upstream for seccheck

7

checksec.sh. Checksec.sh

7

dev-binder-tool. A linux tool for /dev/binder that does not need any special external include or library

7

qemu_driver. Run a libfuzzer harness with qemu_mode

6

drcov-merge. merge multiple drcov coverage files into one

5

eqgrp-free-file. Free sampling of files from the purported Equation Group hack.

5

drcfg. Dynamic Control Flow Recovery

4

nautilus. A grammar based feedback Fuzzer

3

afl.rs. 🐇 Fuzzing Rust code with American Fuzzy Lop

3

susefirewall2. The SUSE Firewall, based on iptables.

2

peach. Dockerfile for peach with everything set up as needed

2

MOpt. C

2

ghidra_installer. Helper scripts to set up OpenJDK 11 and scale Ghidra for 4K on Ubuntu 18.04 / 18.10

2

gdbinit. gdbinit for Linux, OS X, iOS and others - x86, x86_64 and ARM

2

fuzzbench. FuzzBench - Fuzzer benchmarking as a service.

1

CVE-2021-4034. Pre-compiled builds for CVE-2021-4034

1

drtaint. Very WIP taint analysis for DynamoRIO (ARM)

1

network-emulator. LD_PRELOAD POSIX network API emulator

1
34
Apply