List of tools
- Bug reproducer Assistant - Bug-reproducer Assistant is a tool that extracts behavior from live running code (Python or C++), generating a program equivalent to the original, but only with the functions or classes selected by the programmer.
- Core Force - CORE FORCEĀ® is the first community oriented security solution for personal computers. CORE FORCE is free and provides a comprehensive endpoint security solution for Windows 2000 and Windows XP systems.
- Core Grasp - An instrumented PHP interpreter which uses dynamic fine-grained taint analysis to prevent injection vulnerabilities.
- Core Wisdom - Security visualization platform.
- Exomind - Exomind is an experimental Python console and programmatic framework for developing open-source intelligence modules and ideas, centered on social networks services, search engines and instant messaging.
- HeapDraw - HeapDraw/HeapTracer is a tool to visualize the evolution of the heap during the life of an application. We internally use this tool when writing exploits for heap corruption vulnerabilities.
- Heappie - Heappie! is an exploit-writing-oriented memory visualization tool
- Impacket - A collection of Python classes focused on providing access to network packets.
- InlineEgg - InlineEgg is a Python module that provides the user with a toolbox of classes for writing small assembly programs.
- IterDe - Iterative Decompilation tool.
- Msyslog - MSyslog is a logging subsystem for UNIX operating systems which replaces syslogd with log centralization, preservation of log integrity, and storage on a myriad of popular database engines.
- Open XML Advisory Format - XML format developed to assist researchers during the process of reporting security vulnerabilities and writing advisories.
- Pass-The-Hash Toolkit - The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions mantained by the LSA (Local Security Authority) component.
- Pcapy - Python Extension that interfaces with the libpcap packet capture library.
- PyCodin - An open source Python library that allows instrumentation of low-level code for different architectures.
- PyLorcon2 - A Python wrapper for the Lorcon2 802.11 packet injection library.
- SAP Dissection plu-gin for Wireshark - Wireshark plugin that allows dissection of SAP's NI and Diag protocol packets
- SDT Cleaner - SDT Cleaner is a tool that intends to clean the SSDT (system service descriptor table) from hooks.
- Uhooker - The Universal Hooker is a tool to intercept execution of programs. It enables the user to intercept calls to API calls inside DLLs, and also arbitrary addresses within the executable file in memory.
- WPA Migration Mode patches for aircrack-ng and Kismet
- WPSIG - A python tool to fingerprint Wireless Access Points using Wi-Fi Protected Setup (WPS)
- aureliax - aureliax is a tool to show differences between disassembled functions
- eXait - eXtensible Anti-Instrumentation Tester
- gFuzz - This is our web-application instrumented fuzzer prototype, which profits from GRASP's accuracy and a grammatical analysis over queries to detect SQL-injection attacks with a significantly small false-positive rate.
- iPhoneDbg Toolkit - A set of tools to delve into iPhone Binary Reversing.
- pysap - Pcapy-based library which provides modules for crafting and sending packets using SAP's NI and Diag protocols
- sentinel - Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses.
- turbodiff - Turbodiff is a binary diffing tool developed as an IDA plugin.
- wwtool - A wireless scanning tool that uses the Windows Native WiFi API to list available networks