r2vmi Radare2 VMI IO and debugger plugins. These plugins allow you to debug a remote process running in a VM, from the hypervisor-level, leveraging Virtual Machine Introspection. Based on Libvmi to access the...
AllTools All reasonably stable tools CpuStres – thread/CPU stress testing app DriverMon – monitor any driver activity GFlagsX – enhanced version of the GFlags tool Kdump – generate a local kernel dump Kdump64 – generate...
Exploitation / Reverse Engineering
by do son · Published May 24, 2018 · Last modified September 4, 2023
Fibratus Fibratus is a tool for exploration and tracing of the Windows kernel. It lets you trap system-wide events such as process life-cycle, file system I/O, registry modifications or network requests among many other...
Mellivora Mellivora is a CTF engine written in PHP. Features Arbitrary categories and challenges. Scoreboard with optional multiple team types. Manual or automatic free-text submission marking. Challenge hints. Team progress...
peanalyzer Advanced Portable Executable File Analyzer Installation git clone https://github.com/blacknbunny/peanalyzer.git && cd peanalyzer/ pip install pefile pip install capstone Usage python pyanalyzer.py –file file.exe –show all python pyanalyzer.py –file file.exe...
Crypto / Network PenTest / Reverse Engineering / WebApp PenTest
by do son · Published May 4, 2018 · Last modified May 1, 2024
SCTF Security Capture the Flag Platform is the best platform for CTF Challenges. You will be able to define Teams, Challenges, and access to relative statistics. SCTF is lightweight and...
Exploitation / Forensics / Information Gathering / Network PenTest / Reverse Engineering / Sniffing & Spoofing / Vulnerability Analysis / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest / Wireless
by do son · Published April 25, 2018
PloitKit is a Python-based GUI tool designed as one-stop for all other software. I was facing these kinds of problem when I need to switch to the different system, or...
IDACyber is a plugin for the Interactive Disassembler which is capable of visualizing the currently loaded IDB’s data. This can be useful for identifying structures and patterns of binary blobs...
What’s IDAFuzzy? IDAFuzzy is a fuzzy searching tool for IDA Pro. This tool helps you to find command/function/struct and so on. This tool is usefull when You don’t remember all...
tinyctf-platform tinyctf-platform is yet another open-source (jeopardy style) CTF platform. It is relatively easy to set up and modify. Deployment Note: Flask should run on top of a proper web...
sRDI – Shellcode Reflective DLL Injection sRDI allows for the conversion of DLL files to position independent shellcode. Functionality is accomplished via two components: C project which compiles a PE...
Blackbone Windows memory hacking library Features x86 and x64 support Process interaction Manage PEB32/PEB64 Manage process through WOW64 barrier Process Memory Allocate and free virtual memory Change memory protection Read/Write...
Malware Analysis / Reverse Engineering
by do son · Published March 30, 2018 · Last modified September 18, 2021
Process Hacker A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Features A detailed overview of system activity with highlighting. Graphs and statistics...
puzzCode(Puzzle Code) puzzCode is a simple compiler based on mingw, written in C# to build windows applications in such a way that they can’t be analyzed by standard analysis tools...
Exploitation / Reverse Engineering
by do son · Published March 15, 2018 · Last modified October 10, 2021
PESecurity PowerShell script to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, Authenticode, Control Flow Guard, and HighEntropyVA. Download git clone https://github.com/NetSPI/PESecurity.git Usage ...
Support Securityonline.info site. Thanks!
