xihuni

xihuni's Stars

• wagoodman/dive

  A tool for exploring each layer in a docker image

  Language:Go48.6k3653351.8k

• trufflesecurity/trufflehog

  Find, verify, and analyze leaked credentials

  Language:Go17.6k1787371.7k

• gojue/ecapture

  Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

  Language:C13.7k1013421.4k

• google/magika

  Detect file content types with deep learning

  Language:Rust8.2k39446428

• joxeankoret/diaphora

  Diaphora, the most advanced Free and Open Source program diffing tool.

  Language:Python3.7k132259375

• deepfence/SecretScanner

  :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

  Language:Go3.1k4943322

• e-m-b-a/emba

  EMBA - The firmware security analyzer

  Language:Shell2.8k44284237

• sa7mon/S3Scanner

  Scan for misconfigured S3 buckets across S3-compatible APIs!

  Language:Go2.6k66142372

• googleprojectzero/fuzzilli

  A JavaScript Engine Fuzzer

  Language:Swift1.9k70215308

• not-an-aardvark/lucky-commit

  Customize your git commit hashes!

  Language:Rust1.7k122129

• revng/revng

  revng: the core repository of the rev.ng project

  Language:C++1.3k26111100

• corkami/mitra

  A generator of weird files (binary polyglots, near polyglots, polymocks...)

  Language:Python1.1k271577

• SafeBreach-Labs/PoolParty

  A set of fully-undetectable process injection techniques abusing Windows Thread Pools

  Language:C++968163133

• mandiant/GoReSym

  Go symbol recovery tool

  Language:Go632123767

• DissectMalware/XLMMacroDeobfuscator

  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)

  Language:Python5752361114

• mandiant/capa-rules

  Standard collection of rules for capa: the tool for enumerating the capabilities of programs

  54923330164

• strongcourage/awesome-directed-fuzzing

  A curated list of awesome directed fuzzing research papers

  48329445

• ossf/fuzz-introspector

  Fuzz Introspector -- introspect, extend and optimise fuzzers

  Language:Python3862023259

• chainguard-dev/ssc-reading-list

  A reading list for software supply-chain security.

  36218813

• SAP/credential-digger

  A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock:

  Language:Python3281510349

• SecurityFail/kompromat

  Private keys that have become public ...

  Language:PHP174191628

• leandrofroes/gftrace

  A command line Windows API tracing tool for Golang binaries.

  Language:C1495013

• Polydet/polyglot-database

  Database of polyglot files. By polyglot, we mean files readable in multiple formats

  Language:Python1266010

• digicert/pkilint

  A framework for verifying PKI structures

  Language:Python95167523

• jregele/grawler

  Extract deleted secrets from git repos

  Language:Shell603012

• robstradling/authroot.stl

  Windows Automatic Root Update History

  2712221

• Polydet/polydet

  Polyglot detector

  Language:Python20301

• BUseclab/FirmSolo

  Language:Python18514

• ucsb-seclab/symbexcel

  Language:Python141111

• decentL/Understanding-the-Security-Risks-of-Docker-Hub

  Language:Shell10320