Extract files from any kind of container formats

A web CTF for training developers in bug hunting and secure coding!

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…

EMBA - The firmware security analyzer

A starter secure code review checklist

Gerrit Code Review - (mirror of https://gerrit.googlesource.com/gerrit)

Distributed code review system for Git repos

USB Army Knife – the ultimate close access tool for penetration testers and red teamers.

AI-powered bug hunter - vscode plugin.

Create code bookmarks and code highlights with a click.

grep rough audit - source code auditing tool

Directory traversal tool

Collection of legal threats against good faith Security Researchers; vulnerability disclosure gone wrong. A continuation of work started by @attritionorg

a smart DNS response-guided subdomain fuzzer

The best tool for finding one gadget RCE in libc.so.6

SMBScan is a tool to enumerate file shares on an internal network.

An All-In-One Pure Python PoC for CVE-2021-44228

All my little guides in one place. Linux, Programming, Embedded, Electronics, Aeronautics and Guitar.

Hackers Don't Give A Shit

Code fragmentation technique for scripting languages

Script for generating Coccinelle scripts for fixing Linux kernel allocator overflows

Semantic grep for the C language based on coccinelle

Source code of the Coccinelle project (mirror of the main Coccinelle repository located at Inria)

Source code of the Coccinelle project (mirror of the main Coccinelle repository located at Inria)

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.

Fast and syntax-aware semantic code pattern search for many languages: like grep but for code

semgrep rules registry