Polaris: An LLVM-based obfuscator that protects software at various levels

WEB安全手册(红队安全技能栈)，漏洞理解，漏洞利用，代码审计和渗透测试总结。【持续更新】

Frida scripts to rewrite mobile applications at runtime to directly MitM all HTTPS traffic

A WebDriver server for iOS and tvOS

Flutter Mobile Application Reverse Engineering Tool

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

In-place tweak injection with insert_dylib and ChOma.

iOS/macOS Research Swiss Army Knife

Mach-O file parser.

A tool that helps you easy trace classes, functions, and modify the return values of methods on iOS platform

《动手学深度学习》：面向中文读者、能运行、可讨论。中英文版被70多个国家的500多所大学用于教学。

自己搜集的爆破字典，包括常用用户名、密码弱口令、SQL万能密码等

Flutter Reverse Engineering Framework

Patch iOS Apps, The Easy Way, Without Jailbreak.

Dopamine is a semi-untethered jailbreak for iOS 15 and 16

Jailed iOS app that can install IPAs permanently with arbitary entitlements and root helpers because it trolls Apple

工欲善其事，必先利其器

Android Reverse-Engineering Workbench for VS Code

支持Android7-15移动证书，兼容magiskv20.4+/kernelsu/APatch, Support Android7-15, compatible with magiskv20.4+/kernelsu/APatch

适用于windows的解锁华为bootloader的高性能工具,可自定义解锁码更新行为

Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

一款基于BurpSuite的被动式shiro检测插件

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

[deprecated] Yet another frida based iOS dumpdecrypted. Also decrypts app extensions

FridaSwiftDump a Frida tool for retriving the Swift Object info from an running app.

frida runtime (no python required, only a single file),One-click support for ios dump

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

toolkit for python reverse engineering

一个简单的Fastjson反序列化检测burp插件

A lightweight, fast and reliable tun2socks