0xricksanchez

paper_collection

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

like-dbg

Fully dockerized Linux kernel debugging environment

dlink-decrypt

D-Link firmware decryption PoC

AFL_Runner

Scaling best-practice AFLPlusPlus fuzzing campaigns made easy and more

ipq40xx_tee_exploit

ARM Cortex A7 Qualcomm IPQ4018 QSEE (TrustZone) exploit

Shellcoder

BinjaryNinja plugin for a ShellStorm like assembly/disassembly experience

hantu

An educational toy fuzzer with big dreams

upfuzz

The Ultimate File Upload Bypass Generator

hackerlog

A simple but lightweight logging library with no fluff

SMTPeek

High-performance, concurrent SMTP user validation

AFLplusplus

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Damn_Vulnerable_C_Program

An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.

joomla_brute

A sophisticated Joomla administrator brute force tool for security testing and penetration testing purposes.

snapchange

Lightweight fuzzing of a memory snapshot using KVM

0CD

BinaryNinja plugin to introduce some quality of life utilities for obsessive compulsive CTF enthusiasts

0xricksanchez

aixcc-afc-atlantis

astrocommunity

A community repository of common plugin specifications

cai

Cybersecurity AI (CAI), the framework for AI Security

challenge-001-exemplar

Challenge Problem #1 - Linux Kernel

CVE-2021-29447

A XXE payload generator

Gandalf.Lakera.ai_solutions

Solutions to the Gandalf.lakera.ai LLM CTF

go-fuzz

Randomized testing for Go

oss-fuzz

OSS-Fuzz - continuous fuzzing for open source software.

parking-game-fuzzer

Learn to LibAFL with parking-game puzzles.

pdf-extract

A rust library for extracting content from pdfs

pwfilter

A versatile CLI tool for filtering password lists based on various criteria. It allows you to apply predefined password policies (presets) or custom regular expressions to identify passwords that meet specific requirements. This tool is invaluable for password security analysis, penetration testing, CTF challenges, and preparing targeted wordlists.

semgrep_bn

Binary Ninja plugin to automate the process of generating pseudo-C code, running Semgrep over the pseudo-C, and presenting the results.

smol-course

A course on aligning smol models.

TAoFI-Analyzer