Redress - A tool for analyzing stripped Go binaries

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

Guidelines and training material to write secure smart contracts

Parallelized, coverage-guided, mutational Solidity smart contract fuzzing, powered by go-ethereum

Heimdall is an advanced EVM smart contract toolkit specializing in bytecode analysis and extracting information from unverified contracts.

A tool for analyzing the security and parameters of a solidity smart contract

Static Analyzer for Solidity and Vyper

A symbolic testing tool for EVM smart contracts

A static analyzer and linter for the Circom zero-knowledge DSL

DFIR LABS - A compilation of challenges that aims to provide practice in simple to advanced concepts in the following topics: Digital Forensics, Incident Response, Malware Analysis and Threat Hunting.

Kotoamatsukami is an obfuscator based on LLVM-17, utilizing LLVM's new pass to implement plug-in features, for obfuscating multiple languages and platforms.

A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAPI for various operations.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Docs of or4nge team

WriteUp of zkCTF2024

Realtime log viewer for docker containers.

TheBoringNotch: Not so boring notch That Rocks 🎸🎶

Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.

Tool for port forwarding & intranet proxy

Another Mihomo GUI.

📱 objection - runtime mobile exploration

Aptos is a layer 1 blockchain built to support the widespread use of blockchain through better technology and user experience.

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

Main BlueZ tree

Get up and running with Llama 3.3, DeepSeek-R1, Phi-4, Gemma 2, and other large language models.

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

The official Google release of packetdrill

A collection of the ctf challenges about move

A collection of links related to VMware escape exploits

IDEA plugin for directly editing and modifying files in jar without decompression. （一款无需解压直接编辑修改jar包内文件的IDEA插件）