• Stars
    star
    1
  • Language
    Rust
  • License
    MIT License
  • Created over 1 year ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Goblin bindings for parsing ELF header information in FACT

More Repositories

1

awesome-embedded-and-iot-security

A curated list of awesome embedded and IoT security resources.
1,395
star
2

FACT_core

Firmware Analysis and Comparison Tool
Python
1,230
star
3

cwe_checker

cwe_checker finds vulnerable patterns in binary executables
Rust
1,088
star
4

friTap

The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.
JavaScript
257
star
5

dewolf

A research decompiler implemented as a Binary Ninja plugin.
Python
171
star
6

libdesock

A de-socketing library for fuzzing.
C
131
star
7

nvd-json-data-feeds

Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.
Shell
109
star
8

RoAMer

Robust Automated Malware Unpacker
Python
84
star
9

fact_extractor

Standalone Utility for FACT-like extraction
Python
80
star
10

LuckyCAT

A distributed fuzzing management framework
Python
63
star
11

iva

IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.
Python
60
star
12

DeStroid

Fighting String Encryption in Android Malware
Python
53
star
13

butterfly

LibAFL components for stateful fuzzing
Rust
42
star
14

yapscan

Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
Go
40
star
15

bountyhunter

A Caldera plugin for the emulation of complete, realistic cyberattack chains.
Python
40
star
16

socbed

A Self-Contained Open-Source Cyberattack Experimentation Testbed
Python
35
star
17

pcapFS

A FUSE module to mount captured network data
C++
32
star
18

Logprep

log data pre processing, generation and shipping in python
Python
30
star
19

embedded-evaluation-corpus

firmware evaluation reference corpus
22
star
20

wattson

A co-simulation framework for reasearching cybersecurity in power grids.
Python
19
star
21

ipal_transcriber

Industrial protocol transcriber - a common representation of industrial communication as input for protocol-independent industrial intrusion detection systems.
Python
19
star
22

ipal_ids_framework

Industrial Intrusion Detection - A framework for protocol-independent industrial intrusion detection on top of IPAL.
Python
19
star
23

FACT_docker

Dockerfile for building the FACT container
Python
18
star
24

ipal_datasets

Industrial datasets - datasets for evaluating industrial intrusion detection systems on IPAL.
Python
14
star
25

FACT_analysis-plugin_CVE-lookup

FACT analysis plug-in that maps software version to cves
Python
13
star
26

headerParser

Header information parser for PE, ELF, DEX, MachO, ZIP (JAR, DocX).
C
13
star
27

blackbox-opcua-fuzzing

Python
9
star
28

Codescanner

Python
9
star
29

png-carving

PNG file carving related material
C++
8
star
30

mcritweb

JavaScript
7
star
31

bidcos-security-doc

A documentation of the Bidcos (homematic) radio protocol with focus on practical security aspects
Python
7
star
32

FACT_firmadyne_analysis_plugin

Integrates Firmadyne into FACT
Python
7
star
33

61850-fuzzing

This repository provides fuzzing scripts to analyze an IEC 61850 implementation
Python
6
star
34

woodblock

A framework to generate file carving test data.
Python
6
star
35

eeva

E²VA short for Exploitation Experience with Vulnerable App is a vulnerable app to learn userspace exploitation on Android
Java
6
star
36

common_analysis_oms

Offline Malware Scanner (OMS) scans files with multiple locally installed malware scanners.
Python
6
star
37

dewolf-logic

A graph-based logic engine for bitwise operations.
Python
5
star
38

fact_pdf_report

FACT PDF Report Generator
Python
4
star
39

maritime-dissector

A lua plugin for Wireshark which contains dissectors for common maritime protocols.
Lua
4
star
40

common_analysis_ip_and_uri

Detects IPv4 and IPv6 adresses as well as URIs
Python
4
star
41

Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel

Our artifacts to our Paper: "Algorithmic Heap Layout Manipulation in the Linux Kernel"
C
4
star
42

bpf-rootkit-workshop

Workshop: Forensic Analysis of eBPF based Linux Rootkits
C
4
star
43

bpmac

C
3
star
44

talk

NtDeviceIoControlFile talker
C
3
star
45

windowsScripts

A collection of some useful windows (batch) scripts.
Batchfile
3
star
46

common_helper_extraction

Extraction support functions
Python
3
star
47

cve-attribution-s2

Companion Repository to our the whitepaper "Towards Reliable and Scalable Linux Kernel CVE Attribution in Automated Static Firmware Analyses": https://arxiv.org/abs/2209.05217
Python
3
star
48

fact_helper_file

File type helper functions and magic library
Python
3
star
49

entropython

Efficient calculation of shannon byte entropy based on rust library.
Rust
3
star
50

docker_qemu_user

Phusion-based docker image containing the binaries for Qemu User Emulation
Shell
2
star
51

epf-parameter-screening

Shell
2
star
52

pidarci

PIdARCI Prototype Implementation
Python
2
star
53

FACT_analysis_plugin_template

Download this template if you want to write your own FACT analysis plug-in
Python
2
star
54

FACT_Search_and_Download

This tool is intended to create a ground truth matching specific parameters for scientific research on firmware.
Python
2
star
55

common_helper_files

Python
2
star
56

common_helper_yara

Yara command line wrapper
Python
2
star
57

bamboo-chuck-norris-plugin

2
star
58

ELFbin

C
2
star
59

hexter

A minimal terminal hex viewer supporting reading, writing and searching in files and processes.
C
2
star
60

docker_ghidra_headless_base

base docker image for ghidra headless scripting
Dockerfile
2
star
61

ssdeeper

Supplemental material for our paper: ssdeeper - Evaluating and Improving ssdeep.
Shell
1
star
62

common_helper_filter

generate nice structured output
Python
1
star
63

cwe_checker_travis_docker_image

Docker image with current BAP (opam testing) and other dependencies for fast testing of cwe_checker on travis
Dockerfile
1
star
64

mana

Python
1
star
65

FACT_remote_plugin_runner

Base class for FACT remote analysis systems
1
star
66

epf-case-study

C
1
star
67

fact_radare_viewer

Start radare webUI via REST in container and deliver url to view
Python
1
star
68

socbed-eval-acsac-2021

SOCBED evaluation code and dataset as presented at ACSAC 2021
Python
1
star
69

ei2f

C++
1
star
70

common_helper_unpacking_classifier

Try to guess if unpacking a container was successfull.
Python
1
star
71

docker-radare-web-gui

Dockerfile for Radare2 web gui
Shell
1
star
72

dewolf-idioms

A new approach for compiler idioms handling that automatically generates patterns to annotate them.
Python
1
star
73

conpot-plus

Python
1
star
74

frida-emulator-bypass

1
star
75

common_helper_passwords

Helper functions for handling password lists and files.
Python
1
star
76

Web-Content-Integrity

Web Content Integrity: Tamper-proof websites beyond HTTPS
HTML
1
star
77

spmac

Python
1
star
78

common_helper_process

fail-safe process helpers
Python
1
star
79

powerowl

PowerOwl models power grids as a whole and allows to simulate their power-domain behavior.
Python
1
star
80

winDbgFixPte

Fixes WinDbg !pte command not working bug
C
1
star
81

DEXSLib

Currently, the project is being heavily refactored and is therefore in an unusable state. Android RE library for static forward and backward slicing
Java
1
star
82

linux-firmware-corpus

HTML
1
star