{"id":13453924,"url":"https://github.com/zardus/ctf-tools","last_synced_at":"2025-05-11T05:45:02.110Z","repository":{"id":31649945,"uuid":"35215245","full_name":"zardus/ctf-tools","owner":"zardus","description":"Some setup scripts for security research tools.","archived":false,"fork":false,"pushed_at":"2025-03-16T06:49:14.000Z","size":718,"stargazers_count":8870,"open_issues_count":11,"forks_count":1905,"subscribers_count":291,"default_branch":"master","last_synced_at":"2025-05-11T05:44:57.092Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zardus.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2015-05-07T11:02:26.000Z","updated_at":"2025-05-11T02:16:48.000Z","dependencies_parsed_at":"2022-07-14T09:22:19.166Z","dependency_job_id":"5b61bf10-7d4f-4f90-90ae-6dd722781f87","html_url":"https://github.com/zardus/ctf-tools","commit_stats":{"total_commits":555,"total_committers":41,"mean_commits":"13.536585365853659","dds":0.6252252252252253,"last_synced_commit":"1f03b1127b9f2a5df7a4aa6a2e6af73de120b47e"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zardus%2Fctf-tools","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zardus%2Fctf-tools/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zardus%2Fctf-tools/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zardus%2Fctf-tools/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zardus","download_url":"https://codeload.github.com/zardus/ctf-tools/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253523717,"owners_count":21921818,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T08:00:49.336Z","updated_at":"2025-05-11T05:45:02.056Z","avatar_url":"https://github.com/zardus.png","language":"Shell","funding_links":[],"categories":["Shell","Starter Packs","\u003ca id=\"c7f35432806520669b15a28161a4d26a\"\u003e\u003c/a\u003eCTF\u0026\u0026HTB","Shell (473)","Courses","\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集","CTF Tools","Games \u0026 Contests","Tools","Programming/Comp Sci/SE Things","others"],"sub_categories":["\u003ca id=\"e64cedb2d91d06b3eeac5ea414e12b27\"\u003e\u003c/a\u003eCTF","Malware Analysis Books","Windows Books","CTF Tools","Tools to Use"],"readme":"# ctf-tools\n\nThis is a collection of setup scripts to create an install of various security research tools.\nOf course, this isn't a hard problem, but it's really nice to have them in one place that's easily deployable to new machines and so forth.\nThe install-scripts for these tools are checked every once in a while, so things should hopefully have a decent chance of working!\n\nInstallers for the following tools are included:\n\n| Category | Tool | Description |\n|----------|------|-------------|\n| binary | [angr](http://angr.io) | ![Last Build](https://img.shields.io/docker/v/ctftools/angr?label=built) Next-generation binary analysis engine from Shellphish. | \u003c!--tool--\u003e\n| binary | [angr-management](http://angr.io) | ![Last Build](https://img.shields.io/docker/v/ctftools/angr-management?label=built) A GUI reverse engineering and decompilation tool. | \u003c!--tool--\u003e\n| binary | [beef](https://github.com/beefproject/beef) | ![Last Build](https://img.shields.io/docker/v/ctftools/beef?label=built) Browser exploitation framework. | \u003c!--tool--\u003e\n| binary | [crosstool](http://crosstool-ng.org/) | ![Last Build](https://img.shields.io/docker/v/ctftools/crosstool?label=built) Cross-compilers and cross-architecture tools. | \u003c!--tool--\u003e\u003c!--no-test--\u003e\n| binary | [cross2](http://kozos.jp/books/asm/asm.html) | ![Last Build](https://img.shields.io/docker/v/ctftools/cross2?label=built) A set of cross-compilation tools from a Japanese book on C. | \u003c!--tool--\u003e\u003c!--no-test--\u003e\n| binary | [decomp2dbg](https://github.com/mahaloz/decomp2dbg) | ![Last Build](https://img.shields.io/docker/v/ctftools/decomp2dbg?label=built)  A plugin to introduce interactive symbols into your debugger from your decompiler. | \u003c!--tool--\u003e\n| binary | [elfkickers](http://www.muppetlabs.com/~breadbox/software/elfkickers.html) | ![Last Build](https://img.shields.io/docker/v/ctftools/elfkickers?label=built) A set of utilities for working with ELF files. | \u003c!--tool--\u003e\n| binary | [elfparser](https://github.com/mentebinaria/elfparser-ng) | ![Last Build](https://img.shields.io/docker/v/ctftools/elfparser?label=built) Multiplatform CLI and GUI tool to show information about ELF files. | \u003c!--tool--\u003e\n| binary | [evilize](http://www.mathstat.dal.ca/~selinger/md5collision/) | ![Last Build](https://img.shields.io/docker/v/ctftools/evilize?label=built) Tool to create MD5 colliding binaries | \u003c!--tool--\u003e\n| binary | [gdb](http://www.gnu.org/software/gdb/) | ![Last Build](https://img.shields.io/docker/v/ctftools/gdb?label=built) Up-to-date gdb with python2 bindings. | \u003c!--tool--\u003e\u003c!--slow-test--\u003e\n| binary | [gef](https://github.com/hugsy/gef) | ![Last Build](https://img.shields.io/docker/v/ctftools/gef?label=built) Enhanced environment for gdb. | \u003c!--tool--\u003e\n| binary | [ghidra](https://ghidra-sre.org/) | ![Last Build](https://img.shields.io/docker/v/ctftools/ghidra?label=built) Open-source reverse engineering and decompilation tool. | \u003c!--tool--\u003e\n| binary | [honggfuzz](https://github.com/google/honggfuzz) | ![Last Build](https://img.shields.io/docker/v/ctftools/honggfuzz?label=built) A general-purpose, easy-to-use fuzzer with interesting analysis options. | \u003c!--tool--\u003e\n| binary | [ida](https://hex-rays.com/ida-free) | Decompilation and reversing tool (requires you to download it to ~/Downloads on your own!). | \u003c!--tool--\u003e\u003c!--no-test--\u003e\n| binary | [manticore](https://github.com/trailofbits/manticore) | ![Last Build](https://img.shields.io/docker/v/ctftools/manticore?label=built) Manticore is a prototyping tool for dynamic binary analysis, with support for symbolic execution, taint analysis, and binary instrumentation. | \u003c!--tool--\u003e\n| binary | [one_gadget](https://github.com/david942j/one_gadget) | ![Last Build](https://img.shields.io/docker/v/ctftools/one_gadget?label=built) Magic gadget search for libc. | \u003c!--tool--\u003e \n| binary | [preeny](https://github.com/zardus/preeny) | ![Last Build](https://img.shields.io/docker/v/ctftools/preeny?label=built) A collection of helpful preloads (compiled for many architectures!). | \u003c!--tool--\u003e\n| binary | [pwninit](https://github.com/io12/pwninit) | ![Last Build](https://img.shields.io/docker/v/ctftools/pwninit?label=built) Script to automate starting pwning challenges. | \u003c!--tool--\u003e\n| binary | [pwndbg](https://github.com/pwndbg/pwndbg) | ![Last Build](https://img.shields.io/docker/v/ctftools/pwndbg?label=built) Enhanced environment for gdb. Especially for pwning. | \u003c!--tool--\u003e\n| binary | [pwnsh](https://github.com/zardus/pwnsh) | ![Last Build](https://img.shields.io/docker/v/ctftools/pwnsh?label=built) Useful shell scripts for assembly, exploitation, etc. | \u003c!--tool--\u003e\n| binary | [pwntools](https://github.com/Gallopsled/pwntools) | ![Last Build](https://img.shields.io/docker/v/ctftools/pwntools?label=built) Useful CTF utilities. | \u003c!--tool--\u003e\n| binary | [qemu](http://qemu.org) | ![Last Build](https://img.shields.io/docker/v/ctftools/qemu?label=built) Latest version of qemu! | \u003c!--tool--\u003e\u003c!--slow-test--\u003e\n| binary | [qiling](https://github.com/qilingframework/qiling) | ![Last Build](https://img.shields.io/docker/v/ctftools/qiling?label=built) A dynamic binary instrumentation framework. | \u003c!--tool--\u003e\n| binary | [qira](http://qira.me) | ![Last Build](https://img.shields.io/docker/v/ctftools/qira?label=built) Parallel, timeless debugger. | \u003c!--tool--\u003e\u003c!--slow-test--\u003e\n| binary | [rappel](https://github.com/yrp604/rappel) | ![Last Build](https://img.shields.io/docker/v/ctftools/rappel?label=built) A linux-based assembly REPL. | \u003c!--tool--\u003e\n| binary | [ropper](https://github.com/sashs/Ropper) | ![Last Build](https://img.shields.io/docker/v/ctftools/ropper?label=built) Another gadget finder. | \u003c!--tool--\u003e\n| binary | [rp++](https://github.com/0vercl0k/rp) | ![Last Build](https://img.shields.io/docker/v/ctftools/rp?label=built) Another gadget finder. | \u003c!--tool--\u003e\n| binary | [seccomp-tools](https://github.com/david942j/seccomp-tools) | ![Last Build](https://img.shields.io/docker/v/ctftools/seccomp-tools?label=built) Provides powerful tools for seccomp analysis | \u003c!--tool--\u003e\n| binary | [shellnoob](https://github.com/reyammer/shellnoob) | ![Last Build](https://img.shields.io/docker/v/ctftools/shellnoob?label=built) Shellcode writing helper. | \u003c!--tool--\u003e\n| binary | [taintgrind](https://github.com/wmkhoo/taintgrind) | ![Last Build](https://img.shields.io/docker/v/ctftools/taintgrind?label=built) A valgrind taint analysis tool. | \u003c!--tool--\u003e\u003c!--failing--\u003e\n| binary | [valgrind](http://valgrind.org) | ![Last Build](https://img.shields.io/docker/v/ctftools/valgrind?label=built) A Dynamic Binary Instrumentation framework with some built-in tools. | \u003c!--tool--\u003e\n| binary | [villoc](https://github.com/wapiflapi/villoc) | ![Last Build](https://img.shields.io/docker/v/ctftools/villoc?label=built) Visualization of heap operations. | \u003c!--tool--\u003e\n| binary | [xrop](https://github.com/acama/xrop) | ![Last Build](https://img.shields.io/docker/v/ctftools/xrop?label=built) Gadget finder. | \u003c!--tool--\u003e\u003c!--failing--\u003e\n| forensics | [firmware-mod-kit](https://code.google.com/p/firmware-mod-kit/) | ![Last Build](https://img.shields.io/docker/v/ctftools/firmware-mod-kit?label=built) Tools for firmware packing/unpacking. | \u003c!--tool--\u003e\n| forensics | [pdf-parser](http://blog.didierstevens.com/programs/pdf-tools/) | ![Last Build](https://img.shields.io/docker/v/ctftools/pdf-parser?label=built) Tool for digging in PDF files | \u003c!--tool--\u003e\n| forensics | [peepdf](https://github.com/cert-ee/peepdf) | ![Last Build](https://img.shields.io/docker/v/ctftools/peepdf?label=built) Powerful Python tool to analyze PDF documents. | \u003c!--tool--\u003e\n| forensics | [scrdec18](https://gist.github.com/bcse/1834878) | ![Last Build](https://img.shields.io/docker/v/ctftools/scrdec18?label=built) A decoder for encoded Windows Scripts. | \u003c!--tool--\u003e\n| forensics | [volatility](https://github.com/volatilityfoundation/volatility) | ![Last Build](https://img.shields.io/docker/v/ctftools/volatility?label=built) Analyzer for system memory dumps (classic python2 version; requires python2 tool). | \u003c!--tool--\u003e\n| forensics | [volatility3](https://github.com/volatilityfoundation/volatility3) | ![Last Build](https://img.shields.io/docker/v/ctftools/volatility3?label=built) Analyzer for system memory dumps (latest version). | \u003c!--tool--\u003e\n| crypto | [codext](https://github.com/dhondta/python-codext) | ![Last Build](https://img.shields.io/docker/v/ctftools/codext?label=built) Python codecs extension featuring CLI tools for encoding/decoding anything including AI-based guessing mode. | \u003c!--tool--\u003e\n| crypto | [cribdrag](https://github.com/SpiderLabs/cribdrag) | ![Last Build](https://img.shields.io/docker/v/ctftools/cribdrag?label=built) Interactive crib dragging tool (for crypto). | \u003c!--tool--\u003e\n| crypto | [fastcoll](https://www.win.tue.nl/hashclash/) | ![Last Build](https://img.shields.io/docker/v/ctftools/fastcoll?label=built) An md5sum collision generator. | \u003c!--tool--\u003e\n| crypto | [foresight](https://github.com/ALSchwalm/foresight) | ![Last Build](https://img.shields.io/docker/v/ctftools/foresight?label=built) A tool for predicting the output of random number generators. To run, launch \"foresee\". | \u003c!--tool--\u003e\n| crypto | [featherduster](https://github.com/nccgroup/featherduster) | ![Last Build](https://img.shields.io/docker/v/ctftools/featherduster?label=built)  An automated, modular cryptanalysis tool. WARNING: needs python2 (which can be installed with ctf-tools). | \u003c!--tool--\u003e\n| crypto | [galois](http://web.eecs.utk.edu/~plank/plank/papers/CS-07-593) | ![Last Build](https://img.shields.io/docker/v/ctftools/galois?label=built) A fast galois field arithmetic library/toolkit. | \u003c!--tool--\u003e\n| crypto | [hashpump-partialhash](https://github.com/mheistermann/HashPump-partialhash) | ![Last Build](https://img.shields.io/docker/v/ctftools/hashpump-partialhash?label=built) Hashpump, supporting partially-unknown hashes. | \u003c!--tool--\u003e\n| crypto | [hash-identifier](https://code.google.com/p/hash-identifier/source/checkout) | ![Last Build](https://img.shields.io/docker/v/ctftools/hash-identifier?label=built) Simple hash algorithm identifier. | \u003c!--tool--\u003e\n| crypto | [libc-database](https://github.com/niklasb/libc-database) | ![Last Build](https://img.shields.io/docker/v/ctftools/libc-database?label=built) Build a database of libc offsets to simplify exploitation. | \u003c!--tool--\u003e\u003c!--slow-test--\u003e\n| crypto | [msieve](http://sourceforge.net/projects/msieve/) | ![Last Build](https://img.shields.io/docker/v/ctftools/msieve?label=built) Msieve is a C library implementing a suite of algorithms to factor large integers. | \u003c!--tool--\u003e\n| crypto | [nonce-disrespect](https://github.com/nonce-disrespect/nonce-disrespect) | ![Last Build](https://img.shields.io/docker/v/ctftools/nonce-disrespect?label=built) Nonce-Disrespecting Adversaries: Practical Forgery Attacks on GCM in TLS. | \u003c!--tool--\u003e\n| crypto | [pemcrack](https://github.com/robertdavidgraham/pemcrack) | ![Last Build](https://img.shields.io/docker/v/ctftools/pemcrack?label=built) SSL PEM file cracker. | \u003c!--tool--\u003e\n| crypto | [pkcrack](https://www.unix-ag.uni-kl.de/~conrad/krypto/pkcrack.html) | ![Last Build](https://img.shields.io/docker/v/ctftools/pkcrack?label=built) PkZip encryption cracker. | \u003c!--tool--\u003e\n| crypto | [reveng](http://reveng.sourceforge.net/) | ![Last Build](https://img.shields.io/docker/v/ctftools/reveng?label=built) CRC finder. | \u003c!--tool--\u003e\n| crypto | [rsactftool](https://github.com/RsaCtfTool/RsaCtfTool) | ![Last Build](https://img.shields.io/docker/v/ctftools/rsactftool?label=built) RSA attack tool. | \u003c!--tool--\u003e\n| crypto | [ssh_decoder](https://github.com/jjyg/ssh_decoder) | ![Last Build](https://img.shields.io/docker/v/ctftools/ssh_decoder?label=built) A tool for decoding ssh traffic. You will need `ruby1.8` from `https://launchpad.net/~brightbox/+archive/ubuntu/ruby-ng` to run this. Run with `ssh_decoder --help` for help, as running it with no arguments causes it to crash. | \u003c!--tool--\u003e\n| crypto | [sslsplit](https://github.com/droe/sslsplit) | ![Last Build](https://img.shields.io/docker/v/ctftools/sslsplit?label=built) SSL/TLS MITM. | \u003c!--tool--\u003e\n| crypto | [xortool](https://github.com/hellman/xortool) | ![Last Build](https://img.shields.io/docker/v/ctftools/xortool?label=built) XOR analysis tool. | \u003c!--tool--\u003e\n| crypto | [yafu](http://sourceforge.net/projects/yafu/) | ![Last Build](https://img.shields.io/docker/v/ctftools/yafu?label=built) Automated integer factorization. | \u003c!--tool--\u003e\n| web | [burpsuite](http://portswigger.net/burp) | ![Last Build](https://img.shields.io/docker/v/ctftools/burpsuite?label=built) Web proxy to do naughty web stuff. | \u003c!--tool--\u003e\u003c!--failing--\u003e\n| web | [commix](https://github.com/stasinopoulos/commix) | ![Last Build](https://img.shields.io/docker/v/ctftools/commix?label=built) Command injection and exploitation tool. | \u003c!--tool--\u003e\n| web | [mitmproxy](https://mitmproxy.org/) | ![Last Build](https://img.shields.io/docker/v/ctftools/mitmproxy?label=built) CLI Web proxy and python library.  | \u003c!--tool--\u003e\n| web | [subbrute](https://github.com/TheRook/subbrute) | ![Last Build](https://img.shields.io/docker/v/ctftools/subbrute?label=built) A DNS meta-query spider that enumerates DNS records, and subdomains. | \u003c!--tool--\u003e\n| web | [webgrep](https://github.com/dhondta/webgrep) | ![Last Build](https://img.shields.io/docker/v/ctftools/webgrep?label=built) `grep` for Web pages, with JS deobfuscation, CSS unminifying and OCR on images. | \u003c!--tool--\u003e\n| stego | [steganabara](http://www.caesum.com/handbook/stego.htm) | ![Last Build](https://img.shields.io/docker/v/ctftools/steganabara?label=built) Another image stenography solver. | \u003c!--tool--\u003e\n| stego | [stegano-tools](https://github.com/dhondta/stegano-tools) | ![Last Build](https://img.shields.io/docker/v/ctftools/stegano-tools?label=built) A collection of text and image steganography tools (incl LSB, PVD, PIT). | \u003c!--tool--\u003e\n| stego | [stegdetect](http://www.outguess.org/) | ![Last Build](https://img.shields.io/docker/v/ctftools/stegdetect?label=built) Stenography detection/breaking tool. | \u003c!--tool--\u003e\n| stego | [stegsolve](http://www.caesum.com/handbook/stego.htm) | ![Last Build](https://img.shields.io/docker/v/ctftools/stegsolve?label=built) Image stenography solver. | \u003c!--tool--\u003e\n| stego | [stegosaurus](https://github.com/AngelKitty/stegosaurus) | ![Last Build](https://img.shields.io/docker/v/ctftools/stegosaurus?label=built) A steganography tool for embedding arbitrary payloads in Python bytecode (pyc or pyo) files. | \u003c!--tool--\u003e\n| stego | [zsteg](https://github.com/zed-0xff/zsteg) | ![Last Build](https://img.shields.io/docker/v/ctftools/zsteg?label=built) detect stegano-hidden data in PNG \u0026 BMP. | \u003c!--tool--\u003e\n| misc | [jdgui](http://jd.benow.ca/) | ![Last Build](https://img.shields.io/docker/v/ctftools/jdgui?label=built) Java decompiler. | \u003c!--tool--\u003e\n| misc | [python2](https://www.python.org/downloads/release/python-2718/) | ![Last Build](https://img.shields.io/docker/v/ctftools/python2?label=built) For when you really need it... | \u003c!--tool--\u003e\n| misc | [social-analyzer](https://github.com/qeeqbox/social-analyzer) | ![Last Build](https://img.shields.io/docker/v/ctftools/social-analyzer?label=built) Social media reconnaisance tool... | \u003c!--tool--\u003e\n| misc | [veles](https://codisec.com/veles/) | ![Last Build](https://img.shields.io/docker/v/ctftools/veles?label=built) Binary data analysis and visualization tool. | \u003c!--tool--\u003e\n| misc | [xspy](https://gitlab.com/kalilinux/packages/xspy) | ![Last Build](https://img.shields.io/docker/v/ctftools/xspy?label=built) Tiny tool to spy on X sessions. | \u003c!--tool--\u003e\n\nThere are also some installers for non-CTF stuff to break the monotony!\n\n| Category | Tool | Description |\n|----------|------|-------------|\n| game | [df](http://www.bay12games.com/dwarves/) | ![Last Build](https://img.shields.io/docker/v/ctftools/df?label=built) Dwarf Fortress! Something to help you relax after a CTF! | \u003c!--tool--\u003e\n| web | [tor-browser](https://www.torproject.org/projects/torbrowser.html.en) | ![Last Build](https://img.shields.io/docker/v/ctftools/tor-browser?label=built) Useful when you need to hit a web challenge from different IPs. | \u003c!--tool--\u003e\n\n## Usage\n\nTo use, do:\n\n```bash\n# set up the path\n/path/to/ctf-tools/bin/manage-tools setup\nsource ~/.bashrc\n\n# list the available tools\nmanage-tools list\n\n# install gdb, allowing it to try to sudo install dependencies\nmanage-tools -s install gdb\n\n# install pwntools, but don't let it sudo install dependencies\nmanage-tools install pwntools\n\n# install qemu, but use \"nice\" to avoid degrading performance during compilation\nmanage-tools -n install qemu\n\n# uninstall gdb\nmanage-tools uninstall gdb\n\n# uninstall all tools\nmanage-tools uninstall all\n\n# search for a tool\nmanage-tools search preload\n```\n\nWhere possible, the tools keep the installs very self-contained (i.e., in to tool/ directory), and most uninstalls are just calls to `git clean` (**NOTE**, this is **NOT** careful; everything under the tool directory, including whatever you were working on, is blown away during an uninstall).\n\nPython and Ruby tools are installed in a tool-specific virtual environment.\nIf you want to add other packages to this environment, look under the `ctf-tools/TOOL/pipx` or `ctf-tools/TOOL/gems` directories.\n\n## Help!\n\nSomething not working?\nI didn't write (almost) any of these tools, but hit up [the discord](https://discord.gg/KRcjyn4pBH) if you're desperate.\nMaybe some kind soul will help!\n\n## Dockerized Tools\n\n### Prebuilt Tool Containers\n\nYou can get most of these tools in prebuilt containers from [https://hub.docker.com/r/ctftools](dockerhub).\nFor example:\n\n```console\n$ echo hi | docker run -i ctftools/taintgrind taintgrind --taint-stdin=yes /bin/cat\n/home/ctf/tools/taintgrind/valgrind-3.21.0/build/bin/valgrind --tool=taintgrind --taint-stdin=yes /bin/cat\n==8== Taintgrind, the taint analysis tool\n==8== Copyright (C) 2010-2018, and GNU GPL'd, by Wei Ming Khoo.\n==8== Using Valgrind-3.21.0 and LibVEX; rerun with -h for copyright info\n==8== Command: /bin/cat\n==8==\n0xFFFFFFFF: _syscall_read | Read:3 | 0x0 | 4a5a000_unknownobj\nhi\n==8== \n```\n\n### Building Your Own\n\nYou can build a docker image with:\n\n```bash\ngit clone https://github.com/zardus/ctf-tools\ncd ctf-tools\ndocker build -t ctf-tools --build-arg PREINSTALLED=some-tool .\n```\n\nAnd run it with:\n\n```bash\ndocker run -it ctf-tools\n```\n\nThe built image will have ctf-tools cloned and ready to go and your tool installed.\n\n## Kali Linux\n\nKali Linux (Sana and Rolling), due to manually setting certain libraries to not use the latest version available (sometimes being out of date by years) causes some tools to not install at all, or fail in strange ways.\nOverriding these libraries breaks other tools included in Kali so your only solution is to either live with some of Kali's tools being broken, use docker, or running another distribution separately such as Ubuntu.\n\n## Adding Tools\n\nTo add a tool (say, named *toolname*), do the following:\n\n1. Create a `toolname` directory.\n2. Create an `install` script.\n3. Add it to the readme.\n4. (optional) if special uninstall steps are required, create an `uninstall` script.\n\n### Install Scripts\n\nThe install script will be run with `$PWD` being `toolname`. It should install the tool into this directory, in as contained a manner as possible.\nIdeally, full uninstallation should be possible with a `git clean`.\n\nThe install script should create a `bin` directory and put its executables there.\nThese executables will be automatically linked into the main `bin` directory for the repo.\nThey could be launched from any directory, so don't make assumptions about the location of `$0`!\n\n## License\n\nThe individual tools are all licensed under their own licenses.\nAs for ctf-tools itself, it is licensed under BSD 2-Clause License.\nIf you find it useful, star it on github (https://github.com/zardus/ctf-tools).\n\nGood luck!\n\n# See Also\n\nThere's a curated list of CTF tools, but without installers, here: https://github.com/apsdehal/aWEsoMe-cTf.\n\nThere's a Vagrant config with a lot of the bigger frameworks here: https://github.com/thebarbershopper/epictreasure.\n\n## Useful CTF tools in apt repos\n\nAs tools get officially packaged, we switch to just suggesting that you apt install them!\n\n| Category | Source | Tool | Description |\n|----------|--------|------|-------------|\n| binary | apt | [aflplusplus](https://github.com/AFLplusplus/AFLplusplus) | State-of-the-art fuzzer. |\n| binary | apt | [checksec](https://github.com/slimm609/checksec.sh) | Check binary hardening settings. |\n| binary | apt | [radare2](http://www.radare.org/) | Some crazy thing crowell likes. |\n| binary | apt | [rr](http://rr-project.org) | Record and Replay Debugging Framework |\n| binary | apt | [wcc](https://github.com/endrazine/wcc) |  The Witchcraft Compiler Collection is a collection of compilation tools to perform binary black magic on the GNU/Linux and other POSIX platforms. |\n| forensics | apt | [binwalk](https://github.com/ReFirmLabs/binwalk) | Firmware (and arbitrary file) analysis tool. |\n| forensics | apt | [foremost](http://foremost.sourceforge.net/) | File carver. |\n| forensics | apt | [dislocker](http://www.hsc.fr/ressources/outils/dislocker/) | Tool for reading Bitlocker encrypted partitions. |\n| forensics | apt | [origami-pdf](http://github.com/gdelugre/origami) | PDF manipulator. |\n| forensics | apt | [testdisk](http://www.cgsecurity.org/wiki/TestDisk) | Testdisk and photorec for file recovery. |\n| web | apt | [dirb](http://dirb.sourceforge.net/) | Web path scanner. |\n| web | apt | [dirsearch](https://github.com/maurosoria/dirsearch) | Web path scanner. |\n| web | apt | [sqlmap](http://sqlmap.org/) | SQL injection automation engine. |\n| stego | apt | [pngtools](https://launchpad.net/ubuntu/+source/pngtools) | PNG's analysis tool. |\n| stego | apt | [sonic-visualizer](http://www.sonicvisualiser.org/) | Audio file visualization. |\n| networking | apt | [dsniff](http://www.monkey.org/~dugsong/dsniff/) | Grabs passwords and other data from pcaps/network streams. |\n| networking | apt | [bettercap](https://www.bettercap.org/) | Network shenanigans swiss army knife. |\n| misc | apt | [z3](https://github.com/Z3Prover/z3) | Theorem prover from Microsoft Research. |\n\n## Useful CTF tools in docker images\n\nPreviously, this repository included some scripts that were wrappers around `docker pull`.\nWe trust that you can do that yourself :-)\n\n| Category | Source | Tool | Description |\n|----------|--------|------|-------------|\n| binary | docker | [panda](https://github.com/panda-re/panda) | Platform for Architecture-Neutral Dynamic Analysis. |\n| stego | Docker | [stego-toolkit](https://github.com/DominicBreuker/stego-toolkit) | A docker image with dozens of steg tools. |\n\n## Useful CTF Libraries\n\nPreviously, this repository included library installers.\nBecause of how bespoke library install preferences are (e.g., unlike a tool, it's not clear if per-library venvs are a desired thing), we've stopped shipping them, and link them here for posterity.\n\n| Category | Source | Tool | Description |\n|----------|--------|------|-------------|\n| binary | Library | [capstone](http://www.capstone-engine.org) | Multi-architecture disassembly framework. |\n| binary | Library | [keystone](http://www.keystone-engine.org) | Lightweight multi-architecture assembler framework. |\n| binary | Library | [lief](https://lief.quarkslab.com/) | Library to Instrument Executable Formats. |\n| binary | Library | [miasm](https://github.com/cea-sec/miasm) | Reverse engineering framework in Python. |\n| binary | Library | [unicorn](http://www.unicorn-engine.org) | Multi-architecture CPU emulator framework. |\n| binary | Library | [virtualsocket](https://github.com/antoniobianchi333/virtualsocket) | A nice library to interact with binaries. |\n| crypto | Library | [cryptanalib3](https://github.com/unicornsasfuel/cryptanalib3) |  The surviving core of featherduster cryptanalysis tool, updated for python3. |\n| crypto | Library | [python-paddingoracle](https://github.com/mwielgoszewski/python-paddingoracle) | Padding oracle attack automation. |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzardus%2Fctf-tools","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzardus%2Fctf-tools","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzardus%2Fctf-tools/lists"}