tools.md

CTF Tools

A repository of useful CTF tools. Some were written during CTFs.

• Cryptography
• Forensics
• Pwning
• Network
• Web
• Wifi
• Misc

Cryptography

• CyberChef
• FactorDB: Factor large numbers
• GMP-ECM
• maketrans: For letter substitutions

Forensics

• EnCase
• FotoForensics
• Tweakpng: For modifying PNG files
• Sigidwiki
• Volatility: Tool for memory forensics
• QSSCTV

Pwning/Reversing

• Apkstudio
  • Apktool
  • Jadx
  • ADB
  • Uber APK signer
• Adhrit
• Binary Ninja
• ctf-vm
  • gsingh93's binary exploitation vm
• elfy.io: A web based ELF parser
• gef
• GHIDRA
• Fennec
  • Post-compilation function call change
• IDA
• Kaitai.io: General binary RE
• kitgen
• Linux Syscall Table
• Libc Database
• Multi Arch
• One Gadget: Tool for finding one gadgets
• pwndbg
• pwntools
• Radare2 Cheatsheet
• Seccomp Tools
• Skeksi virus
• x64dbg
• xrop
• z3

Mac

• lldbinit

Network

• nmap
• scapy
• Wireshark
• BloodhoundAD: AD Enumeration tool
• Pulsar: Thorough network scanner

Penetration Testing

Web

• Arachni web scanner
• Burpsuite
  • Configuring Burp
• HTTP Statuses
• OWASP Zap
• Storage Inspector
• FUSE: Finding file upload vulnerabilities
• temp-mail.org
  • Disposable email address
• PayloadsAllTheThings
• hacker101_micro_cmsv2_db_miner.py
  • Python3 code illustrating blind SQL injection to retrieve a username/password from a DB. Written by sam.

Wifi

• lscript

CTF Platforms

• CTF Times
• Facebook CTF
• Mellivora
• picoCTF

Misc

• biproxy
  • TCP proxy with decryption capabilities. Written by kellen and bitshift.
• CTF tools
• Hyperkit: Mac virtualization
• LinuxKit
• University of Michigan BlueJeans
• Google Hacking Database
  • A database of google queries for finding vulnerable systems
• Snippet Toolbox
  • Useful penetration testing and CTF snippets
• tandasat: UEFI hypervisor to boot OS
• Pentesting Tools
• pypy
• Windows Service Hijacking
  • Malicious Windows service binary.