Tools
SARIF Explorer is a VSCode extension that enables you to review static analysis results effectively and enjoyably.
Format string finder uses binary ninja’s powerful IL’s to find format string vulnerabilities in binaries (without access to source code) and printf-like functions. It was featured in Paged Out!’s issue #1 winning Best Security/RE article leading to it being presented in São Paulo, Brasil at Hackers to Hackers Conference 2019.
prop is a tool to extract rop gadgets and generate python code that helps you create your rop chains automatically and by hand. This is a tool I developed while learning to exploit binaries using return oriented programming (ROP). It was a mostly for learning but it turned into something I’ve used ever since, and find very practical.