Pinned Repositories
bap
Binary Analysis Platform
BenchmarkJava
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
FlowDroid-Sparse
Sparse Analysis Optimization Of Low Code Intrusion for FlowDroid. 加速分析和减少内存占用
FridaContainer
FridaContainer 整合了网上流行的和自己编写的常用的 frida 脚本,为逆向工作提效之用。 frida 脚本模块化,Java & Jni Trace。
KernelRootfs
Kernel pwnd
key-awosome
KeY Theorem Prover for Deductive Java Verification
libc-anyenv
一个快速搭建任何版本环境的工具、使用chroot具备环境隔离、ida自动加载DWARF、被调试程序输入输出重定向等功能
ScyllaHide-IDA7.5
ScyllaHide for IDA7.5; ScyllaHide IDA7.5; It is a really niccccccce anti-anti-debug tool
TriggerBug
Fast-Symbolic-Emulation-Engine. 主要用于自动化逆向约束求解,目的是解决angr的各种不足之处,大学时使用本工具solve了很多ctf题目,毕业后不打ctf了,很少维护了,后面可能会用来做一些其他的程序分析,反混淆也是不错. ( tips: repo设置private再public会丢失全部star, 原本还有30几个的 ... )
x86_sandbox_sju_pwn_all
出题
notify-bibi's Repositories
notify-bibi/ScyllaHide-IDA7.5
ScyllaHide for IDA7.5; ScyllaHide IDA7.5; It is a really niccccccce anti-anti-debug tool
notify-bibi/libc-anyenv
一个快速搭建任何版本环境的工具、使用chroot具备环境隔离、ida自动加载DWARF、被调试程序输入输出重定向等功能
notify-bibi/FlowDroid-Sparse
Sparse Analysis Optimization Of Low Code Intrusion for FlowDroid. 加速分析和减少内存占用
notify-bibi/TriggerBug
Fast-Symbolic-Emulation-Engine. 主要用于自动化逆向约束求解,目的是解决angr的各种不足之处,大学时使用本工具solve了很多ctf题目,毕业后不打ctf了,很少维护了,后面可能会用来做一些其他的程序分析,反混淆也是不错. ( tips: repo设置private再public会丢失全部star, 原本还有30几个的 ... )
notify-bibi/x86_sandbox_sju_pwn_all
出题
notify-bibi/FridaContainer
FridaContainer 整合了网上流行的和自己编写的常用的 frida 脚本,为逆向工作提效之用。 frida 脚本模块化,Java & Jni Trace。
notify-bibi/KernelRootfs
Kernel pwnd
notify-bibi/key-awosome
KeY Theorem Prover for Deductive Java Verification
notify-bibi/bap
Binary Analysis Platform
notify-bibi/BenchmarkJava
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
notify-bibi/cnn_waf
Web Attacks Detection based on CNN
notify-bibi/codeql-uboot
notify-bibi/cppcheck
static analysis of C/C++ code
notify-bibi/cv_resume
A latex cv/resume template.
notify-bibi/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
notify-bibi/injectory
command-line interface dll injector
notify-bibi/jpf-symbc
Symbolic PathFinder
notify-bibi/notify-bibi.github.io
notify-bibi/NoVmpy
notify-bibi/openssl
TLS/SSL and crypto library
notify-bibi/pcollections
A Persistent Java Collections Library
notify-bibi/rdma-core
RDMA core userspace libraries and daemons
notify-bibi/Some-Papers-About-Fuzzing
There are some papers about fuzzing. I record them by Xmind. Welcome to contact to me.
notify-bibi/strongR-frida-android
An anti detection version frida-server for android.
notify-bibi/UTBotJava
Tool that generates unit test by Java source code, trying to reach all branches and maximize code coverage
notify-bibi/vmpattack
A VMP to VTIL lifter.