Filter By
142 Repositories
Rust Security tools
Bottlerocket - An operating system designed for hosting containers
Bottlerocket OS Welcome to Bottlerocket! Bottlerocket is a free and open-source Linux-based operating system meant for hosting containers. If you’re r
Detects usage of unsafe Rust in a Rust crate and its dependencies.
cargo-geiger ☢️ Looking for maintainer: https://github.com/rust-secure-code/cargo-geiger/issues/210 A program that lists statistics related to the usa
Rapidly Search and Hunt through Windows Event Logs
Rapidly Search and Hunt through Windows Event Logs Chainsaw provides a powerful ‘first-response’ capability to quickly identify threats within Windows
Secure and fast microVMs for serverless computing.
Our mission is to enable secure, multi-tenant, minimal-overhead execution of container and function workloads. Read more about the Firecracker Charter
🤖 The Modern Port Scanner 🤖
➡️ Discord | Installation Guide | Usage Guide ⬅️ The Modern Port Scanner. Fast, smart, effective. 🐋 Docker (Recommended) 👩💻 Kali / Debian 🏗️ Arch
A cryptographically verifiable code review system for the cargo (Rust) package manager.
image credit cargo-crev A cryptographically verifiable code review system for the cargo (Rust) package manager. Introduction Crev is a language and ec
An impish, cross-platform binary parsing crate, written in Rust
libgoblin Documentation https://docs.rs/goblin/ changelog Usage Goblin requires rustc 1.40.0. Add to your Cargo.toml [dependencies] goblin = "0.4" Fea
Rust bindings for libinjection
libinjection-rs Rust bindings for libinjection. How to use Add libinjection to dependencies of Cargo.toml: libinjection = "0.2" Import crate: extern c
A self-hosted Fuzzing-As-A-Service platform
OneFuzz A self-hosted Fuzzing-As-A-Service platform Project OneFuzz enables continuous developer-driven fuzzing to proactively harden software prior t
Semi-automatic OSINT framework and package manager
sn0int sn0int (pronounced /snoɪnt/) is a semi-automatic OSINT framework and package manager. It was built for IT security professionals and bug hunter
Userspace WireGuard® Implementation in Rust
BoringTun BoringTun is an implementation of the WireGuard® protocol designed for portability and speed. BoringTun is successfully deployed on millions
How-to: Sanitize your Rust code!
rust-san How-to: Sanitize your Rust code! Intro How to use the sanitizers? Examples AddressSanitizer Out of bounds access Use after free LeakSanitizer
Rust library for building and running BPF/eBPF modules
RedBPF A Rust eBPF toolchain. Overview The redbpf project is a collection of tools and libraries to build eBPF programs using Rust. It includes: redbp
Use Touch ID / Secure Enclave for SSH Authentication!
SeKey About SeKey is a SSH Agent that allow users to authenticate to UNIX/Linux SSH servers using the Secure Enclave How it Works? The Secure Enclave
OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
OpenSK This repository contains a Rust implementation of a FIDO2 authenticator. We developed OpenSK as a Tock OS application. We intend to bring a ful
Rust-verification-tools - RVT is a collection of tools/libraries to support both static and dynamic verification of Rust programs.
Rust verification tools This is a collection of tools/libraries to support both static and dynamic verification of Rust programs. We see static verifi
A fast, simple, recursive content discovery tool written in Rust.
A simple, fast, recursive content discovery tool written in Rust 🦀 Releases ✨ Example Usage ✨ Contributing ✨ Documentation 🦀 😕 What the heck is a f
delegated, decentralized, capabilities based authorization token
Biscuit authentication/authorization token Goals Biscuit is an authentication and authorization token for microservices architectures with the followi
spy on the DNS queries your computer is making
dnspeep dnspeep lets you spy on the DNS queries your computer is making. Here's some example output: $ sudo dnspeep query name
symbolic execution engine for Rust
Seer: Symbolic Execution Engine for Rust Seer is a fork of miri that adds support for symbolic execution, using z3 as a solver backend. Given a progra
Independent verification of binary packages - reproducible builds
rebuilderd(1) Independent verification system of binary packages. Accessing a rebuilderd instance in your browser Scripting access to a rebuilderd ins
Record and Replay Framework
Overview rr is a lightweight tool for recording, replaying and debugging execution of applications (trees of processes and threads). Debugging extends
An implementation of webauthn components for Rustlang servers
Webauthn-rs Webauthn is a modern approach to hardware based authentication, consisting of a user with an authenticator device, a browser or client tha
Automated property based testing for Rust (with shrinking).
quickcheck QuickCheck is a way to do property based testing using randomly generated input. This crate comes with the ability to randomly generate and
Brave's Rust-based adblock engine
Ad Block engine in Rust Native Rust module for Adblock Plus syntax (e.g. EasyList, EasyPrivacy) filter parsing and matching. It uses a tokenisation ap
Rust mid-level IR Abstract Interpreter
MIRAI MIRAI is an abstract interpreter for the Rust compiler's mid-level intermediate representation (MIR). It is intended to become a widely used sta
Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
Alternative implementation of the Bitwarden server API written in Rust and compatible with upstream Bitwarden clients*, perfect for self-hosted deploy
Simple prepender virus written in Rust
Linux.Fe2O3 This is a POC ELF prepender written in Rust. I like writting prependers on languages that I'm learning and find interesting. As for the na
A new shellcode injection technique. Given as C++ header, standalone Rust program or library.
FunctionStomping Description This is a brand-new technique for shellcode injection to evade AVs and EDRs. This technique is inspired by Module Stompin
corncobs: Corny COBS encoding/decoding in Rust
corncobs: Corny COBS encoding/decoding in Rust This crate provides Consistent Overhead Byte Stuffing (COBS) support for Rust programs, with a particul
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
LibAFL, the fuzzer library. Advanced Fuzzing Library - Slot your own fuzzers together and extend their features using Rust. LibAFL is written and main
A paseto implementation in rust.
Paseto Rust Paseto is everything you love about JOSE (JWT, JWE, JWS) without any of the many design deficits that plague the JOSE standards. This is d
An interpreter for Rust's mid-level intermediate representation
Miri An experimental interpreter for Rust's mid-level intermediate representation (MIR). It can run binaries and test suites of cargo projects and det
The Mullvad VPN client app for desktop and mobile
Mullvad VPN desktop and mobile app Welcome to the Mullvad VPN client app. This repository contains all the source code for the desktop and mobile vers
Applied offensive security with the Rust programming language
Black Hat Rust Applied offensive security with the Rust programming language Buy the book now! While the Rust Book does an excellent job teaching What
link is a command and control framework written in rust
link link is a command and control framework written in rust. Currently in alpha. Table of Contents Introduction Features Feedback Build Process Ackno
The Arbitrary trait
Arbitrary The trait for generating structured data from arbitrary, unstructured input. About The Arbitrary crate lets you construct arbitrary instance
ripgrep recursively searches directories for a regex pattern while respecting your gitignore
ripgrep (rg) ripgrep is a line-oriented search tool that recursively searches the current directory for a regex pattern. By default, ripgrep will resp
Binary Analysis Framework in Rust
Welcome to Falcon Falcon is a formal binary analysis framework in Rust. Expression-based IL with strong influences from RREIL and Binary Ninja's LLIL.
Authoscope is a scriptable network authentication cracker.
authoscope authoscope is a scriptable network authentication cracker. While the space for common service bruteforce is already very well saturated, yo
A Comprehensive Web Fuzzer and Content Discovery Tool
rustbuster A Comprehensive Web Fuzzer and Content Discovery Tool Introduction Check the blog post: Introducing Rustbuster — A Comprehensive Web Fuzzer
A private network system that uses WireGuard under the hood.
innernet A private network system that uses WireGuard under the hood. See the announcement blog post for a longer-winded explanation. innernet is simi
Modular, structure-aware, and feedback-driven fuzzing engine for Rust functions
Fuzzcheck Fuzzcheck is a modular, structure-aware, and feedback-driven fuzzing engine for Rust functions. Given a function test: (T) - bool, you can
A simple password manager written in Rust
ripasso A simple password manager written in Rust. The root crate ripasso is a library for accessing and decrypting passwords stored in pass format (G
Binary coverage tool without binary modification for Windows
Summary Mesos is a tool to gather binary code coverage on all user-land Windows targets without need for source or recompilation. It also provides an
Secure multithreaded packet sniffer
sniffglue sniffglue is a network sniffer written in rust. Network packets are parsed concurrently using a thread pool to utilize all cpu cores. Projec
Hypothesis-like property testing for Rust
Proptest Introduction Proptest is a property testing framework (i.e., the QuickCheck family) inspired by the Hypothesis framework for Python. It allow
Security advisory database for Rust crates published through crates.io
RustSec Advisory Database The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via https://crates.
Dangerously fast dns/network/port scanner, all-in-one
Skanuvaty Dangerously fast dns/network/port scanner, all-in-one. Start with a domain, and we'll find everything about it. Features: Finds subdomains f
Simple verification of Rust programs via functional purification in Lean 2(!)
electrolysis About A tool for formally verifying Rust programs by transpiling them into definitions in the Lean theorem prover. Masters thesis: Simple
A fuzzer framework built in Rust
lain This crate provides functionality one may find useful while developing a fuzzer. A recent nightly Rust build is required for the specialization f
a grammar based feedback fuzzer
Nautilus NOTE: THIS IS AN OUTDATE REPOSITORY, THE CURRENT RELEASE IS AVAILABLE HERE. THIS REPO ONLY SERVES AS A REFERENCE FOR THE PAPER Nautilus is a
Cross-platform async library for system information fetching 🦀
heim Cross-platform library for system information fetching heim is an ongoing attempt to create the best tool for system information fetching (ex., C
Multi-threaded Padding Oracle attacks against any service. Written in Rust.
rustpad is a multi-threaded successor to the classic padbuster, written in Rust. It abuses a Padding Oracle vulnerability to decrypt any cypher text or encrypt arbitrary plain text without knowing the encryption key!