ReFlutter
This framework assists in Flutter apps reverse engineering by using a patched version of the Flutter library for app repacking. It modifies the snapshot deserialization process for dynamic analysis, patches socket.cc for traffic monitoring, modifies dart.cc to print classes and functions, supports manual Flutter code changes, and provides support for Android and iOS engines. It requires Burp Suite for traffic interception.
FEATURES
ALTERNATIVES
Scan folders and files for crypto patterns, hacking team malware, and malicious documents using PEID signatures.
A new age tool for binary analysis that uses statistical visualizations to help find patterns in large amounts of binary data.
Ropper is a tool for analyzing binary files and searching for gadgets to build rop chains for different architectures.
A tool that generates pseudo-malicious files to trigger YARA rules.
A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence
Fuzzilli is a JavaScript engine fuzzer that helps identify vulnerabilities in JavaScript engines.
Tplmap is a tool for detecting and exploiting server-side template injection vulnerabilities.
A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.