fibratus
objection
Our great sponsors
fibratus | objection | |
---|---|---|
46 | 17 | |
2,071 | 6,978 | |
- | 2.0% | |
8.4 | 3.9 | |
2 days ago | 3 months ago | |
Go | Python | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
fibratus
- Announcing Fibratus 2.0.0
-
Announcing Fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine
I'm thrilled to announce the availability of Fibratus 1.10.0. This release brings a set of interesting features , such as the Yara function for combining signature and behavior-based detections, expanded detection rules catalog, native grammar for sequence rules, etc.
-
Fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine built in Go
I'm happy to announce the availability of Fibratus 1.10.0. Fibratus aims at providing a high-performance engine for capturing Windows system events and asserting them against a ruleset for the purpose of detecting adversary kill chain. All rules are built on top of the prominent MITRE security framework.
- Release v1.10.0 · Fibratus
- Announcing fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine
- Announcing Fibratus 1.8.0 - a modern tool for Windows kernel tracing with a focus on security
-
Fibratus - a modern tool for Windows kernel tracing with a focus on threat detection and prevention
You can check the full changelog here.
- Fibratus: Open-source threat detection and prevention solution
objection
- apk.sh, make reverse engineering Android apps easier!
- Prerequisites for reverse engineering?
-
Mitmproxy 8
This is true, by default Android apps do not trust user-installed certificate authorities. IMO the easiest solution if you're doing security testing on a dedicated device is MagiskTrustUserCerts[1]. If you're not testing on a dedicated device or you don't want to root the device, I'd recommend using the objection[2] tool which has a guided mode for patching an apk, and you can modify the manifest to add your CA or to trust all user-installed CAs.
[1]: https://github.com/NVISOsecurity/MagiskTrustUserCerts
[2]: https://github.com/sensepost/objection/wiki/Patching-Android...
-
Is this networking knowledge enough ?
Then use runtime tools like Runtime Mobile Security, Grapefruit, and Objection to see stuff in action and practice Frida along with as these tools usually support loading custom Frida scripts.
-
Okhttp3 SSL pinning bypass
you might have more luck in some whitehat hacking groups etc. ive used https://github.com/sensepost/objection to try out my own app.
-
Beststar all songs + unlimited play v1.1
In some form yes. Internally this is just a Frida gadget script which you can see here does support IOS.
What are some alternatives?
androguard - Reverse engineering and pentesting for Android applications
frida - Clone this repo to build Frida
space-cloud - Open source Firebase + Heroku to develop, scale and secure serverless apps on Kubernetes
drozer - The Leading Security Assessment Framework for Android.
go-financial - A go port of numpy-financial functions and more.
Free-RASP-Community - SDK providing app protection and threat monitoring for mobile devices, available for Flutter, Cordova, Android and iOS.
Project-Lightspeed - A self contained OBS -> FTL -> WebRTC live streaming server. Comprised of 3 parts once configured anyone can achieve sub-second OBS to the browser livestreaming
awesome-frida - Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
OpenDiablo2 - An open source re-implementation of Diablo 2
Apktool - A tool for reverse engineering Android apk files
core - Backend server API handling user mgmt, database, storage and real-time component
pwndbg - Exploit Development and Reverse Engineering with GDB Made Easy