Docs
ARM调用约定
http://infocenter.arm.com/help/topic/com.arm.doc.ihi0042f/IHI0042F_aapcs.pdf在线汇编和反汇编(基于keystone和capstone的web版)
http://shell-storm.org/online/Online-Assembler-and-Disassembler/arm、x86系统调用表
https://chromium.googlesource.com/chromiumos/docs/+/master/constants/syscalls.md#cross_arch-numbersmitre维护的wiki,很多攻击技术的英文表达
https://attack.mitre.org/wiki/Main_Page各平台下的shellcode收集 http://shell-storm.org/shellcode/
iOS APP安全开发手册,含URL处理、数据存储、目录结构等
https://github.com/felixgr/secure-ios-app-dev利用电话的UI漏洞,使受害者以为挂掉了电话,实际只是变了界面,通话仍在后台进行,达到监听的目的(iOS上的漏洞,Android或微信语音是否可行?强制挂掉?多个通话切换?)
https://www.martinvigo.com/diy-spy-program-abusing-apple-call-relay-protocol/Weex、ReactNative等开发的跨平台应用有什么漏洞?
iOS逆向资料汇总 https://everettjf.github.io/2018/01/15/ios-app-reverse-engineering-stuff/
操作系统或第三方app的自动填充密码功能 http://www.s3.eurecom.fr/projects/modern-android-phishing/
iOS
- iOSRE相关文档,包括macos、iOS等 https://github.com/writeups/iOS
- iOS固件ROM下载 https://ipsw.me/#!/download
- 了解和分析iOS Crash Report https://juejin.im/post/5c5edb37e51d457f926d2290
- iOS APP测试环境搭建
https://spaceraccoon.dev/from-checkra1n-to-frida-ios-app-pentesting-quickstart-on-ios-13 - (简单的静态+动态分析)Hunting Credentials and Secrets in iOS Apps https://spaceraccoon.dev/low-hanging-apples-hunting-credentials-and-secrets-in-ios-apps
- 官方安全指导apple-platform-security-guide
https://manuals.info.apple.com/MANUALS/1000/MA1902/en_US/apple-platform-security-guide.pdf
IoT
渗透相关
Tools
GitHub安全搜集
- sec-tool-list https://github.com/alphaSeclab/sec-tool-list
- awesome-reverse-engineering https://github.com/alphaSeclab/awesome-reverse-engineering
- awesome-cyber-security https://github.com/alphaSeclab/awesome-cyber-security
spy-debugger 微信调试,各种WebView样式调试、手机浏览器的页面真机调试。便捷的远程调试手机页面、抓包工具,支持:HTTP/HTTPS,无需USB连接设备
https://github.com/wuchangming/spy-debuggerRundll32.exe 打开url
1 | rundll32 url.dll, OpenURL file://c:\windows\system32\calc.exe |
binary diff工具
DarunGrim
BinDiff
Diaphora
radiff2
Ghidrawebshell查杀
- windows D盾 http://www.d99net.net/
- linux rkhunter http://rkhunter.sourceforge.net/
elasticsearch 搭建社工库 搜云数据、暗网数据、
代码美化 carbon 一个在线将代码生成高逼格的图片工具 https://carbon.now.sh/
ssl流量抓取
lief 解析elf、pe、MathO等可执行文件的python库,可修改到处函数等,跨平台 (https://lief.quarkslab.com/、https://github.com/lief-project/LIEF)
http://lmgtfy.com/ 记录搜索一个关键字的过程,适用于那些懒得搜索就提问的人,打脸专用
DNS Rebinding工具 https://lock.cmpxchg8b.com/rebinder.html
Hashcat 各种hash破解工具 http://www.freebuf.com/sectool/164507.html
Android uiautomator的python wrapper(自动化测试或Fuzz)
https://github.com/xiaocong/uiautomator- Unicode同形字,对抗和谐必备 http://www.unicode.org/Public/security/latest/confusablesSummary.txt
营业执照生成 http://zz.iis1.cn/
巧笔输入法 https://hanzi.unihan.com.cn/Qpen 当你不知道怎么把一个汉字输入到电脑里时,可以手写识别
安卓设备的取证、数据读取解析工具 https://github.com/den4uk/andriller
查看apk、dex、elf使用的加固、加壳、混淆工具 https://github.com/rednaga/APKiD
专利标准查询
人脸识别相关论文搜集 https://github.com/ChanChiChoi/awesome-Face_Recognition#face-anti-spoofing
jeb脚本自动生成frida、xposed hook代码
https://github.com/LeadroyaL/JebScriptAI处理图片、视频工具
- 补帧 DAIN (Depth-Aware Video Frame Interpolation)https://github.com/baowenbo/DAIN
- 增大分辨率 ESRGAN https://github.com/xinntao/ESRGAN
- 老照片上色 DeOldify https://github.com/jantic/DeOldify
- 换脸 DeepFake https://www.deepfaker.xyz/
常用正则
- 提取url
curl https://www.baidu.com | grep -Eo “(http|https)://[a-zA-Z0-9./?=_-]*”
- 提取url
不同手机的工程模式
- 华为
- *#*#2846579#*#* 含打开APP log
- oppo
- *#*#4636#*#*
- xiaomi
- *#*#6484#*#*
- vivo
- *#558#
- 华为