vulnerability-research
There are 171 repositories under vulnerability-research topic.
payloadbox/command-injection-payload-list
🎯 Command Injection Payload List
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
gobysec/Goby
Attack surface mapping
sergey-pronin/Awesome-Vulnerability-Research
🦄 A curated list of the awesome resources about the Vulnerability Research
kaliiiiiiiiii/Selenium-Driverless
a stealthy browser automation framework
0xdea/semgrep-rules
A collection of my Semgrep rules to facilitate vulnerability research.
clearbluejar/ghidriff
Python Command-Line Ghidra Binary Diffing Engine
Battelle/afl-unicorn
afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.
mohitmishra786/reversingBits
A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse engineers, and low-level programmers.
sgayou/subaru-starlink-research
Subaru StarLink persistent root code execution.
insightglacier/Shiro_exploit
Apache Shiro 反序列化漏洞检测与利用工具
foundryzero/llef
LLEF is a plugin for LLDB to make it more useful for RE and VR
hugsy/CFB
CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.
quarkslab/conf-presentations
Quarkslab conference talks
0xdea/ghidra-scripts
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.
pwnfuzz/diffrays
DiffRays is a research-oriented tool for binary patch diffing, designed to aid in vulnerability research, exploit development, and reverse engineering.
Karmaz95/Snake_Apple
Articles and tools related to research in the Apple environment (mainly macOS).
chebuya/sastsweep
tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size
oryxlabs/PolarDNS
PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.
quarkslab/qbindiff
Quarkslab Bindiffer but not only !
Sentinel-One/peafl64
Static Binary Instrumentation tool for Windows x64 executables
softrams/bulwark
An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
user1342/Obfu-DE-Scate
Obfu[DE]scate is a de-obfuscation tool for Android APKs that uses fuzzy comparison logic to identify similarities between functions, even if they have been renamed as part of obfuscation. It compares two versions of an APK and generates a mapping text file and an interactive HTML file as outputs!
VerSprite/research
VerSprite Security Research
quarkslab/pastis
PASTIS: Collaborative Fuzzing Framework
precize/Agentic-AI-Top10-Vulnerability
Top 10 for Agentic AI (AI Agent Security) serves as the core for OWASP and CSA Red teaming work
0xdea/weggli-patterns
A collection of my weggli patterns to facilitate vulnerability research.
RevEngAI/reai-ghidra
RevEng.AI Ghidra Plugin
lhmtriet/awesome-vulnerability-assessment
An ever-growing list of resources for data-driven vulnerability assessment and prioritization
jthuraisamy/DIRT
Driver Initial Reconnaissance Tool
RevEngAI/reai-ida
RevEng.AI IDA Pro Plugin
0xdea/rhabdomancer
Vulnerability research assistant that locates calls to potentially insecure API functions in a binary file.
0xdea/haruspex
Vulnerability research assistant that extracts pseudocode from the IDA Hex-Rays decompiler.
0xdea/augur
Reverse engineering assistant that extracts strings and related pseudocode from a binary file.
user1342/AutoCorpus
AutoCorpus is a tool backed by a large language model (LLM) for automatically generating corpus files for fuzzing.
cve-north-stars/cve-north-stars.github.io
Leveraging CVEs as North Stars in vulnerability discovery and comprehension.