This is a collection of setup scripts to create an install of various security research tools. Of course, this isn't a hard problem, but it's really nice to have them in one place that's easily deployable to new machines and so forth. The install-scripts for these tools are checked regularly, the results can be found on the build status page. Installers for the following tools are included: - afl: State-of-the-art fuzzer. - angr: Next-generation binary analysis engine from Shellphish. - barf: Binary Analysis and Reverse-engineering Framework. - bindead: A static analysis tool for binaries. - capstone: Multi-architecture disassembly framework. - checksec: Check binary hardening settings. - codereason: Semantic Binary Code Analysis Framework. - crosstool-ng: Cross-compilers and cross-architecture tools. - cross2: A set of cross-compilation tools from a Japanese book on C. - elfkickers: A set of utilities for working with ELF files. - elfparser: Quickly determine the capabilities of an ELF bin
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A hands-on cybersecurity laboratory environment for Gray Hat Hacking Chapter 29 that creates virtualized Docker and Kali Linux machines using Terraform for practical security training exercises.
A lightweight CTF platform with simple setup and difficulty-based scoring that removes timezone advantages from competitions.
A Node.js Ebook by GENTILHOMME Thomas, covering Node.js development and resources
Mellivora Mellivora is a PHP-based CTF engine that provides comprehensive competition hosting capabilities with challenge management, team scoring, and administrative tools for cybersecurity competitions.
A command-line tool for downloading Android APK files from the Appland platform via npm installation.
NightShade is a Django-based capture the flag framework that enables organizations to create and manage cybersecurity competitions with support for multiple contest formats and multi-tenant architecture.
A tool for SSH server auditing with comprehensive analysis capabilities.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.