For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Attack surface mapping

🦄 A curated list of the awesome resources about the Vulnerability Research

a stealthy browser automation framework

Vulnerability detection framework by Binarly's REsearch team

A collection of my Semgrep rules to facilitate vulnerability research.

Python Command-Line Ghidra Binary Diffing Engine

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse engineers, and low-level programmers.

afl-unicorn lets you fuzz any piece of binary that can be emulated by Unicorn Engine.

Subaru StarLink persistent root code execution.

Apache Shiro 反序列化漏洞检测与利用工具

LLEF is a plugin for LLDB to make it more useful for RE and VR

Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands of Windows kernel drivers for exploitable IOCTLs natively using AI agents.

Agent-driven automated CVE discovery platform for source code auditing, vulnerability verification, and report generation.

CFB is a ProcMon-style tool designed to assist capturing IRPs sent to Windows drivers.

DiffRays is a research-oriented tool for binary patch diffing, designed to aid in vulnerability research, exploit development, and reverse engineering.

Quarkslab conference talks

A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.

Articles and tools related to research in the Apple environment (mainly macOS).

PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.