Pinned Repositories
aws-sigv4
Anvil Secure's Burp extension for signing AWS requests with SigV4
awstracer
AWS CLI Tracer - trace and replay sequences of aws cli commands
dawgmon
dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software
garmin-ciq-app-research
Garmin Forerunner 245 Music research artefacts.
lookinsidethebox
Breaks the encryption and obfuscation layers that Dropbox applies to their modified Python interpreter.
nanopb-decompiler
nosymonkey
API hooking and code injection made easy!
pqcscan
Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support
symlink-secure-boot-vm
VM demonstration various symlink and hard link attacks against secure boot. See the whitepaper at: https://www.anvilventures.com/blog/defeating-secure-boot-with-symlink-attacks.html
ulexecve
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
Anvil Secure's Repositories
anvilsecure/ulexecve
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
anvilsecure/pqcscan
Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support
anvilsecure/lookinsidethebox
Breaks the encryption and obfuscation layers that Dropbox applies to their modified Python interpreter.
anvilsecure/garmin-ciq-app-research
Garmin Forerunner 245 Music research artefacts.
anvilsecure/dawgmon
dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software
anvilsecure/nosymonkey
API hooking and code injection made easy!
anvilsecure/nanopb-decompiler
anvilsecure/aws-sigv4
Anvil Secure's Burp extension for signing AWS requests with SigV4
anvilsecure/symlink-secure-boot-vm
VM demonstration various symlink and hard link attacks against secure boot. See the whitepaper at: https://www.anvilventures.com/blog/defeating-secure-boot-with-symlink-attacks.html
anvilsecure/hominoid
Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.
anvilsecure/usb-racer
This tool emulates USB disk drives and allows easy swapping out of data blocks in order to test TOCTOU issues.
anvilsecure/hanalyzer
Tool to audit SAP Hana DB based on https://help.sap.com/docs/SAP_HANA_PLATFORM/742945a940f240f4a2a0e39f93d3e2d4/45955420940c4e80a1379bc7270cead6.html?locale=en-US
anvilsecure/BoschFirmwareTool
anvilsecure/gog-galaxy-app-research
Public release for the GOG Galaxy Research Security Advisory.
anvilsecure/SAPCARve
Utility Python script for manipulating SAP's SAR archive files.
anvilsecure/awstracer
AWS CLI Tracer - trace and replay sequences of aws cli commands
anvilsecure/azure-sphere-re
anvilsecure/interfacer
Tool to override the default interface to which a binary connects in linux.
anvilsecure/bytebanter
ByteBanter is a Burp Suite extension that leverages Large Language Models (LLMs) to generate intelligent and context-aware payloads for Burp Intruder. By integrating AI capabilities, ByteBanter enhances automated security testing by producing diverse and adaptive payloads tailored to specific testing scenarios.