ycmint's repositories
ARCUS
Symbolic Execution Over Processor Traces
BlackDex
BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds.
bluffy
Convert shellcode into :sparkles: different :sparkles: formats!
Chrome-V8-RCE-CVE-2021-38003
CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224
cve-2022-31705
CVE-2022-31705 (Geekpwn 2022 Vmware EHCI OOB) POC
CVE-2023-21608
Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
enzyme
iOS jailbreak-free modding framework.
FACT_core
Firmware Analysis and Comparison Tool
fuzzable
Framework for Automating Fuzzable Target Discovery with Static Analysis. Featured at Black Hat Arsenal USA 2022.
fuzzware
Fuzzware's main repository. Start here to install.
JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
JSpector
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
silent-spring
Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
snapchange
Lightweight fuzzing of a memory snapshot using KVM
SysNR-FuncFinder
A plugin for IDA that renames functions by system call numbers.
TaintMini
Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis
tenet
A Trace Explorer for Reverse Engineers
tiny_tracer
A Pin Tool for tracing API calls etc
TinyInst
A lightweight dynamic instrumentation library
ttddbg
Time Travel Debugging IDA plugin
unblob
Extract files from any kind of container formats
vRealizeLogInsightRCE
POC for RCE using vulnerabilities described in VMSA-2023-0001
wtf
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows.