Goyotan

ksniff

Kubectl plugin to ease sniffing on kubernetes pods using tcpdump and wireshark

QCSuper

QCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.

sanitizer_stacktrace_rs

A Rust crate to generate backtraces using the LLVM codebase

webdbpress-2019-10-ddd

WEB+DB PRESS 2019年10月号「体験 ドメイン駆動設計 モデリングから実装までを一気に制覇」サンプルコード

chromium-downloader

Scripts to download and run the latest Linux build of Chromium.

e9patch

A powerful static binary rewriting tool

TinyInst

A lightweight dynamic instrumentation library

lagopus

Distributed fuzzing platform

v8pp

Bind C++ functions and classes into V8 JavaScript engine

magia

magia is a toy GBA emulator written in golang.

rvemu

RISC-V emulator for CLI and Web written in Rust with WebAssembly. It supports xv6 and Linux (ongoing).

ProjectChampollion

Reverse engineering Rosetta 2 on M1 Mac

HowToHunt

Collection of methodology and test case for various web vulnerabilities.

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

p0tools

Project Zero Docs and Tools

ffpuppet

A Python module that aids in the automation of Firefox at the process level

dharmafuzz

Fuzzing v8 with dharma and libfuzzer

HardenedPartitionAlloc

A forked and hardened version of PartitionAlloc from Chrome's Blink engine

ts2c

Convert Javascript/TypeScript to C

Montage

Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer

js-test-suite

A collection of JavaScript test suites from JavaScript engine & Test262 repositories.

CompareCoverage

Clang instrumentation module for tracing variable and buffer comparisons in C/C++ and saving the coverage data to .sancov files

clang-cfi-showcase

Sample programs that illustrate how to use control flow integrity with the clang compiler

clang-cfi-bypass-techniques

Exploitation techniques to bypass Clang CFI when applied to Chromium

ossf-cve-benchmark

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

jobs

$ ssh jobs.hackclub.com

UltimateWDACBypassList

A centralized resource for previously documented WDAC bypass techniques

TinyAFL

chromium-ipc-sniffer

A tool to capture communication between Chromium processes on Windows

onefuzz

A self-hosted Fuzzing-As-A-Service platform