PINT
Pint is a PIN tool that exposes the PIN API to lua scripts. Pint runs on 64 bit Ubuntu and 32 bit Windows XP, it should run on 32 bit Ubuntu and 64 bit XP as well but this is yet untested. PIN is a dynamic instrumentation engine developed by Intel. Basically, it is a JIT compiler for binaries. It will disassemble the binary, one basic block at a time, and recompile it with additional instructions inserted at arbitrary positions. Pint makes it possible to add lua code at this point. Installation: Under Windows, make sure you have VC++2010 installed. Install cygwin and the following packages: ruby, patch, wget, unzip. Add C:\cygwin\bin to the %PATH% environment variable. Open a VC++ console. Move to your preferred directory and run: git clone "https://github.com/hexgolems/pint" cd pint ruby make.rb setup. The setup target will download pin & lua, apply patches where necessary and build Pint. The final pintool is called runner.dll. You can then run your lua script with: pin.exe -t runner.dll -s path/to/scrip -- binary_to_instrument.exe args for exe. Under Ubuntu, make sure you use ruby1.9 and have git installed and then run: git clone "https://github.com/hexgolems/pint" cd pint
FEATURES
ALTERNATIVES
A DAST solution that performs automated security testing of APIs and web applications within development workflows and CI/CD pipelines.
Protect your Fastify server against CSRF attacks with a series of utilities and recommendations for secure application development.
A tool to conduct preliminary security checks in code, infrastructure, or IAM configurations using various open-source tools.
Fnord is a pattern extractor for obfuscated code that extracts byte sequences and creates statistics, as well as generates experimental YARA rules.
A popular free security tool for automatically finding security vulnerabilities in web applications
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.
Kiterunner is a tool for lightning-fast traditional content discovery and bruteforcing API endpoints in modern applications.
Embeddable Yara library for Java with support for loading rules and scanning data.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.