ctf-tools
This is a collection of setup scripts to create an install of various security research tools. Of course, this isn't a hard problem, but it's really nice to have them in one place that's easily deployable to new machines and so forth. The install-scripts for these tools are checked regularly, the results can be found on the build status page. Installers for the following tools are included: - afl: State-of-the-art fuzzer. - angr: Next-generation binary analysis engine from Shellphish. - barf: Binary Analysis and Reverse-engineering Framework. - bindead: A static analysis tool for binaries. - capstone: Multi-architecture disassembly framework. - checksec: Check binary hardening settings. - codereason: Semantic Binary Code Analysis Framework. - crosstool-ng: Cross-compilers and cross-architecture tools. - cross2: A set of cross-compilation tools from a Japanese book on C. - elfkickers: A set of utilities for working with ELF files. - elfparser: Quickly determine the capabilities of an ELF bin
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Enhances the reading experience of smali code in Emacs.
A collection of binary tools for various purposes including linking, assembling, profiling, and more.
A CTF platform inspired by motherfuckingwebsite.com, emphasizing simplicity and lightweight features.
A security framework for process isolation and sandboxing based on capability-based security principles.
Package verification tool for npm with various verification and testing capabilities.
Porting GNU/Linux userland tools to the bionic/Linux userland of Android to provide access to the audit stream for Android applications with minimal overhead.
The OWASP AppSec Europe '16 Conference is a leading gathering in web application security, featuring keynote speakers and in-depth trainings in application security topics.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.